Weekly Vulnerabilities Reports > August 20 to 26, 2012

Overview

243 new vulnerabilities reported during this period, including 20 critical vulnerabilities and 23 high severity vulnerabilities. This weekly summary report vulnerabilities in 189 products from 108 vendors including Microsoft, Mcafee, Ffmpeg, Websense, and Libav. Vulnerabilities are notably categorized as "Race Condition", "Improper Restriction of Operations within the Bounds of a Memory Buffer", "Permissions, Privileges, and Access Controls", "Cross-site Scripting", and "Information Exposure".

  • 188 reported vulnerabilities are remotely exploitables.
  • 12 reported vulnerabilities have public exploit available.
  • 56 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 221 reported vulnerabilities are exploitable by an anonymous user.
  • Microsoft has the most reported vulnerabilities, with 45 reported vulnerabilities.
  • Microsoft has the most reported critical vulnerabilities, with 7 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

20 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2012-08-26 CVE-2011-5127 Bluecoat
Microsoft
Path Traversal vulnerability in Bluecoat Reporter

Directory traversal vulnerability in Blue Coat Reporter 9.x before 9.2.4.13, 9.2.5.x before 9.2.5.1, and 9.3 before 9.3.1.2 on Windows allows remote attackers to read arbitrary files, and consequently execute arbitrary code, via an unspecified HTTP request.

10.0
2012-08-26 CVE-2011-5124 Bluecoat Buffer Errors vulnerability in Bluecoat Proxyone and Proxysg

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port (16102/tcp).

10.0
2012-08-26 CVE-2011-5123 Comodo Cryptographic Issues vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors.

10.0
2012-08-26 CVE-2011-5121 Comodo Cryptographic Issues vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether unspecified X.509 certificates are revoked, which has unknown impact and remote attack vectors.

10.0
2012-08-26 CVE-2010-5185 Comodo Improper Input Validation vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors.

10.0
2012-08-25 CVE-2012-3416 Condor Project Improper Authentication vulnerability in Condor Project Condor

Condor before 7.8.2 allows remote attackers to bypass host-based authentication and execute actions such as ALLOW_ADMINISTRATOR or ALLOW_WRITE by connecting from a system with a spoofed reverse DNS hostname.

10.0
2012-08-22 CVE-2012-4599 Mcafee Improper Authentication vulnerability in Mcafee Smartfilter Administration

McAfee SmartFilter Administration, and SmartFilter Administration Bess Edition, before 4.2.1.01 does not require authentication for access to the JBoss Remote Method Invocation (RMI) interface, which allows remote attackers to execute arbitrary code via a crafted .war file.

10.0
2012-08-22 CVE-2012-2864 Google
Acer
Samsung
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Google Chrome OS

Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."

10.0
2012-08-21 CVE-2012-4167 Adobe
Apple
Microsoft
Linux
Google
Numeric Errors vulnerability in Adobe Air, AIR SDK and Flash Player

Integer overflow in Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allows attackers to execute arbitrary code via unspecified vectors.

10.0
2012-08-21 CVE-2012-4165 Adobe
Apple
Microsoft
Linux
Google
Buffer Errors vulnerability in Adobe Air, AIR SDK and Flash Player

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4163 and CVE-2012-4164.

10.0
2012-08-21 CVE-2012-4164 Adobe
Apple
Microsoft
Linux
Google
Buffer Errors vulnerability in Adobe Air, AIR SDK and Flash Player

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4163 and CVE-2012-4165.

10.0
2012-08-21 CVE-2012-4163 Adobe
Apple
Microsoft
Linux
Google
Buffer Errors vulnerability in Adobe Air, AIR SDK and Flash Player

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4164 and CVE-2012-4165.

10.0
2012-08-21 CVE-2012-4577 Korenix Credentials Management vulnerability in Korenix Jetport

The Linux firmware image on (1) Korenix Jetport 5600 series serial-device servers and (2) ORing Industrial DIN-Rail serial-device servers has a hardcoded password of "password" for the root account, which allows remote attackers to obtain administrative access via an SSH session.

10.0
2012-08-26 CVE-2010-5191 Bluecoat Cross-Site Request Forgery (CSRF) vulnerability in Bluecoat Avos and Proxyav

Multiple cross-site request forgery (CSRF) vulnerabilities on the Blue Coat ProxyAV appliance before 3.2.6.1 allow remote attackers to hijack the authentication of administrators for requests that (1) change a password, (2) modify a policy, or (3) restart the device.

9.3
2012-08-26 CVE-2010-5189 Bluecoat Permissions, Privileges, and Access Controls vulnerability in Bluecoat products

Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.

9.3
2012-08-24 CVE-2012-2990 Samsung Code Injection vulnerability in Samsung Kies 2.3.2.12074

The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified methods, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted HTML document.

9.3
2012-08-23 CVE-2012-4337 Foxitsoftware
Microsoft
Memory Corruption vulnerability in Foxit Reader

Foxit Reader before 5.3 on Windows XP and Windows 7 allows remote attackers to execute arbitrary code via a PDF document with a crafted attachment that triggers calculation of a negative number during processing of cross references.

9.3
2012-08-22 CVE-2012-4598 Mcafee Denial-Of-Service vulnerability in Mcafee products

An unspecified ActiveX control in McAfee Virtual Technician (MVT) before 6.4, and ePO-MVT, allows remote attackers to execute arbitrary code or cause a denial of service (Internet Explorer crash) via a crafted web site.

9.3
2012-08-22 CVE-2009-5118 Mcafee Unspecified vulnerability in Mcafee Virusscan Enterprise 7.1.0/8.0I/8.5I

Untrusted search path vulnerability in McAfee VirusScan Enterprise before 8.7i allows local users to gain privileges via a Trojan horse DLL in an unspecified directory, as demonstrated by scanning a document located on a remote share.

9.3
2012-08-21 CVE-2012-4363 Adobe
Apple
Linux
Microsoft
Unspecified vulnerability in Adobe Acrobat Reader

Multiple unspecified vulnerabilities in Adobe Reader through 10.1.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, related to "sixteen more crashes affecting Windows, OS X, or both systems."

9.3

23 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2012-08-20 CVE-2012-3252 HP Denial of Service vulnerability in HP Serviceguard A.11.19/A.11.20

Unspecified vulnerability in HP Serviceguard A.11.19 and A.11.20 allows remote attackers to cause a denial of service via unknown vectors.

7.8
2012-08-20 CVE-2012-4361 HP OS Command Injection vulnerability in HP San/Iq

lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter.

7.7
2012-08-20 CVE-2012-2986 HP OS Command Injection vulnerability in HP San/Iq 9.5

lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3) fourth parameter.

7.7
2012-08-26 CVE-2012-2227 Pluxml Path Traversal vulnerability in Pluxml 0.3.1/5.1.5

Directory traversal vulnerability in update/index.php in PluXml before 5.1.6 allows remote attackers to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the default_lang parameter.

7.5
2012-08-26 CVE-2012-4673 Thomas Hunter SQL Injection vulnerability in Thomas Hunter Neoinvoice

SQL injection vulnerability in application/controllers/invoice.php in NeoInvoice might allow remote attackers to execute arbitrary SQL commands via vectors involving the sort_col variable in the list_items function, a different vulnerability than CVE-2012-3477.

7.5
2012-08-26 CVE-2012-3477 Thomas Hunter SQL Injection vulnerability in Thomas Hunter Neoinvoice

SQL injection vulnerability in signup_check.php in NeoInvoice allows remote attackers to execute arbitrary SQL commands via the value parameter in a username action.

7.5
2012-08-26 CVE-2012-2289 EMC Permissions, Privileges, and Access Controls vulnerability in EMC products

EMC ApplicationXtender Desktop before 6.5 SP2 and ApplicationXtender Web Access .NET before 6.5 SP2 allow remote attackers to upload files to any location, and possibly execute arbitrary code, via unspecified vectors.

7.5
2012-08-25 CVE-2012-3441 Icinga Permissions, Privileges, and Access Controls vulnerability in Icinga 1.7.1

The database creation script (module/idoutils/db/scripts/create_mysqldb.sh) in Icinga 1.7.1 grants access to all databases to the icinga user, which allows icinga users to access other databases via unspecified vectors.

7.5
2012-08-23 CVE-2011-5116 Setseed SQL Injection vulnerability in Setseed CMS 5.11.2/5.8.20

SQL injection vulnerability in setseed-hub in SetSeed CMS 5.8.20, 5.11.2, and earlier allows remote attackers to execute arbitrary SQL commands via the loggedInUser cookie.

7.5
2012-08-23 CVE-2011-5113 Techdeluge
Joomla
SQL Injection vulnerability in Techdeluge COM Techfolio 1.0

SQL injection vulnerability in frontend/models/techfoliodetail.php in Techfolio (com_techfolio) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter.

7.5
2012-08-23 CVE-2011-5112 Blueflyingfish
Joomla
SQL Injection vulnerability in Blueflyingfish COM Alameda

SQL injection vulnerability in Alameda (com_alameda) component before 1.0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the storeid parameter to index.php.

7.5
2012-08-23 CVE-2011-5111 Kajianwebsite SQL Injection vulnerability in Kajianwebsite CMS Balitbang 3.0

Multiple SQL injection vulnerabilities in Kajian Website CMS Balitbang 3.x allow remote attackers to execute arbitrary SQL commands via the hal parameter to (1) the data module in alumni.php; or the (2) lih_buku, (3) artikel, (4) album, or (5) berita module in index.php.

7.5
2012-08-23 CVE-2011-5110 John GEO SQL Injection vulnerability in John GEO Blogs Manager 1.101

Multiple SQL injection vulnerabilities in Blogs Manager 1.101 and earlier allow remote attackers to execute arbitrary SQL commands via the SearchField parameter in a search action to (1) _authors_list.php, (2) _blogs_list.php, (3) _category_list.php, (4) _comments_list.php, (5) _policy_list.php, (6) _rate_list.php, (7) categoriesblogs_list.php, (8) chosen_authors_list.php, (9) chosen_blogs_list.php, (10) chosen_comments_list.php, and (11) help_list.php in blogs/.

7.5
2012-08-23 CVE-2011-5109 John GEO SQL Injection vulnerability in John GEO Freelancer Calendar 1.01

Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the SearchField parameter in a search action to (1) category_list.php, (2) Copy_of_calendar_list.php, (3) customer_statistics_list.php, (4) customer_list.php, and (5) task_statistics_list.php in the worldcalendar directory.

7.5
2012-08-23 CVE-2011-5103 Alurian SQL Injection vulnerability in Alurian Prismotube Video Script

SQL injection vulnerability in Alurian Prismotube PHP Video Script allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

7.5
2012-08-23 CVE-2011-5102 Websense Permissions, Privileges, and Access Controls vulnerability in Websense products

The Investigative Reports web interface in the TRITON management console in Websense Web Security 7.1 before Hotfix 109, 7.1.1 before Hotfix 06, 7.5 before Hotfix 78, 7.5.1 before Hotfix 12, 7.6 before Hotfix 24, and 7.6.2 before Hotfix 12; Web Filter; Web Security Gateway; and Web Security Gateway Anywhere allows remote attackers to execute commands via unspecified vectors.

7.5
2012-08-22 CVE-2012-4595 Mcafee Improper Authentication vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote attackers to bypass authentication and obtain an admin session ID via unspecified vectors.

7.5
2012-08-22 CVE-2011-5100 Mcafee Improper Authentication vulnerability in Mcafee Firewall Reporter 5.1.0.6

The web interface in McAfee Firewall Reporter before 5.1.0.13 does not properly implement cookie authentication, which allows remote attackers to obtain access, and disable anti-virus functionality, via an HTTP request.

7.5
2012-08-20 CVE-2012-3455 KDE Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in KDE Koffice

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document.

7.5
2012-08-20 CVE-2012-3456 Calligra Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Calligra

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document.

7.5
2012-08-26 CVE-2012-3485 Google Improper Input Validation vulnerability in Google Tunnelblick

Tunnelblick 3.3beta20 and earlier relies on argv[0] to determine the name of an appropriate (1) kernel module pathname or (2) executable file pathname, which allows local users to gain privileges via an execl system call.

7.2
2012-08-26 CVE-2012-3484 Google Permissions, Privileges, and Access Controls vulnerability in Google Tunnelblick

Tunnelblick 3.3beta20 and earlier relies on a test for specific ownership and permissions to determine whether a program can be safely executed, which allows local users to bypass intended access restrictions and gain privileges via a (1) user-mountable image or (2) network share.

7.2
2012-08-21 CVE-2012-2980 ATT
HTC
Samsung
Sprint
T Mobile
Credentials Management vulnerability in multiple products

The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffer, which allows remote attackers to obtain sensitive information via a crafted application, as demonstrated by PIN numbers, telephone numbers, and text messages.

7.1

177 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2012-08-26 CVE-2012-3486 Google Permissions, Privileges, and Access Controls vulnerability in Google Tunnelblick

Tunnelblick 3.3beta20 and earlier allows local users to gain privileges via an OpenVPN configuration file that specifies execution of a script upon occurrence of an OpenVPN event.

6.9
2012-08-24 CVE-2011-5117 Sophos Race Condition vulnerability in Sophos products

Sophos SafeGuard Enterprise Device Encryption 5.x through 5.50.8.13, Sophos SafeGuard Easy Device Encryption Client 5.50.x, and Sophos Disk Encryption 5.50.x have a delay before removal of (1) out-of-date credentials and (2) invalid credentials, which allows physically proximate attackers to defeat the full-disk encryption feature by leveraging knowledge of these credentials.

6.9
2012-08-26 CVE-2012-2104 Munin Monitoring Improper Input Validation vulnerability in Munin-Monitoring Munin 2.0/2.1

cgi-bin/munin-cgi-graph in Munin 2.x writes data to a log file without sanitizing non-printable characters, which might allow user-assisted remote attackers to inject terminal emulator escape sequences and execute arbitrary commands or delete arbitrary files via a crafted HTTP request.

6.8
2012-08-26 CVE-2012-1921 Sitecom Cross-Site Request Forgery (CSRF) vulnerability in Sitecom Wlm-2501

Cross-site request forgery (CSRF) vulnerability in goform/admin/formWlEncrypt in Sitecom WLM-2501 allows remote attackers to hijack the authentication of administrators for requests that change the router passphrase via the pskValue parameter.

6.8
2012-08-26 CVE-2012-1175 GNU Numeric Errors vulnerability in GNU Gnash 0.8.10

Integer overflow in the GnashImage::size method in libbase/GnashImage.h in GNU Gnash 0.8.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SWF file, which triggers a heap-based buffer overflow.

6.8
2012-08-26 CVE-2010-5088 Silverstripe Cross-Site Request Forgery (CSRF) vulnerability in Silverstripe

Multiple cross-site request forgery (CSRF) vulnerabilities in SilverStripe 2.3.x before 2.3.9 and 2.4.x before 2.4.3 allow remote attackers to hijack the authentication of administrators via destructive controller actions, a different vulnerability than CVE-2010-5087.

6.8
2012-08-26 CVE-2010-5080 Silverstripe Cross-Site Request Forgery (CSRF) vulnerability in Silverstripe

The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 passes a token as a GET parameter while changing a password through email, which allows remote attackers to obtain sensitive data and hijack the session via the HTTP referer logs on a server, aka "HTTP referer leakage."

6.8
2012-08-25 CVE-2012-3481 Gimp Integer Overflow or Wraparound vulnerability in Gimp

Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted height and len properties in a GIF image file, which triggers a heap-based buffer overflow.

6.8
2012-08-25 CVE-2012-3479 GNU Remote Code Execution vulnerability in GNU Emacs 'enable-local-variables'

lisp/files.el in Emacs 23.2, 23.3, 23.4, and 24.1 automatically executes eval forms in local-variable sections when the enable-local-variables option is set to :safe, which allows user-assisted remote attackers to execute arbitrary Emacs Lisp code via a crafted file.

6.8
2012-08-25 CVE-2012-3403 Gimp Out-of-bounds Write vulnerability in Gimp

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."

6.8
2012-08-25 CVE-2012-3402 Gimp Integer Overflow or Wraparound vulnerability in Gimp

Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted channels header value in a PSD image file, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2009-3909.

6.8
2012-08-22 CVE-2012-4581 Mcafee Improper Authentication vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not disable the server-side session token upon the closing of the Management Console/Dashboard, which makes it easier for remote attackers to hijack sessions by capturing a session cookie and then modifying the response to a login attempt, related to a "Logout Failure" issue.

6.8
2012-08-20 CVE-2012-4237 Tecnick SQL Injection vulnerability in Tecnick Tcexam

Multiple SQL injection vulnerabilities in TCExam before 11.3.008 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the subject_module_id parameter to (1) tce_edit_answer.php or (2) tce_edit_question.php.

6.8
2012-08-20 CVE-2011-4364 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Buffer overflow in the Sierra VMD decoder in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9 and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VMD file, related to corrupted streams.

6.8
2012-08-20 CVE-2011-4352 Libav
Ffmpeg
Numeric Errors vulnerability in multiple products

Integer overflow in the vp3_dequant function in the VP3 decoder (vp3.c) in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VP3 stream, which triggers a buffer overflow.

6.8
2012-08-20 CVE-2011-3945 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The decode_frame function in the KVG1 decoder (kgv1dec.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted media file.

6.8
2012-08-20 CVE-2012-0947 Libav Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Libav

Heap-based buffer overflow in the vqa_decode_chunk function in the VQA codec (vqavideo.c) in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VQA media file in which the image size is not a multiple of the block size.

6.8
2012-08-20 CVE-2012-0859 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier.

6.8
2012-08-20 CVE-2012-0858 Ffmpeg
Libav
Resource Management Errors vulnerability in multiple products

The Shorten codec (shorten.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Shorten file, related to an "invalid free".

6.8
2012-08-20 CVE-2012-0853 Ffmpeg
Libav
Improper Input Validation vulnerability in multiple products

The decodeTonalComponents function in the Actrac3 codec (atrac3.c) in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (infinite loop and crash) and possibly execute arbitrary code via a large component count in an Atrac 3 file.

6.8
2012-08-20 CVE-2012-0852 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an ADPCM file with the number of channels not equal to two.

6.8
2012-08-20 CVE-2012-0851 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted H.264 file, related to the chroma_format_idc value.

6.8
2012-08-20 CVE-2011-3952 Ffmpeg
Libav
Improper Input Validation vulnerability in multiple products

The decode_init function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large palette size in a KMVC encoded file.

6.8
2012-08-20 CVE-2011-3951 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The dpcm_decode_frame function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted stereo stream in a media file.

6.8
2012-08-20 CVE-2011-3947 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MJPEG-B file.

6.8
2012-08-20 CVE-2011-3940 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."

6.8
2012-08-20 CVE-2011-3929 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The avpriv_dv_produce_packet function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly execute arbitrary code via a crafted DV file.

6.8
2012-08-25 CVE-2012-3503 Katello Permissions, Privileges, and Access Controls vulnerability in Katello

The installation script in Katello 1.0 and earlier does not properly generate the Application.config.secret_token value, which causes each default installation to have the same secret token, and allows remote attackers to authenticate to the CloudForms System Engine web interface as an arbitrary user by creating a cookie using the default secret_token.

6.5
2012-08-22 CVE-2009-5116 Mcafee Improper Authentication vulnerability in Mcafee Linuxshield 1.5/1.5.1

McAfee LinuxShield 1.5.1 and earlier does not properly implement client authentication, which allows remote authenticated users to obtain Admin access to the statistics server by leveraging a client account.

6.5
2012-08-22 CVE-2009-5115 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Common Management Agent

McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.

6.5
2012-08-25 CVE-2012-4670 Tigase Improper Input Validation vulnerability in Tigase Xmpp Server

Tigase XMPP Server before 5.1.0 does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.

6.4
2012-08-22 CVE-2010-3499 F Secure Permissions, Privileges, and Access Controls vulnerability in F-Secure Anti-Virus

F-Secure Anti-Virus does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.

6.4
2012-08-22 CVE-2010-3498 AVG Permissions, Privileges, and Access Controls vulnerability in AVG Anti-Virus

AVG Anti-Virus does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.

6.4
2012-08-22 CVE-2010-3497 Symantec Permissions, Privileges, and Access Controls vulnerability in Symantec Norton Antivirus 2011

Symantec Norton AntiVirus 2011 does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.

6.4
2012-08-22 CVE-2010-3496 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Virusscan Enterprise 8.5I/8.7I

McAfee VirusScan Enterprise 8.5i and 8.7i does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.

6.4
2012-08-26 CVE-2012-3483 Google Race Condition vulnerability in Google Tunnelblick

Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file.

6.2
2012-08-25 CVE-2010-5184 Checkpoint
Microsoft
Race Condition vulnerability in Checkpoint Zonealarm Extreme Security 9.1.507.000

** DISPUTED ** Race condition in ZoneAlarm Extreme Security 9.1.507.000 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5183 Webroot
Microsoft
Race Condition vulnerability in Webroot Internet Security Essentials 6.1.0.145

** DISPUTED ** Race condition in Webroot Internet Security Essentials 6.1.0.145 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5182 Virusbuster
Microsoft
Race Condition vulnerability in Virusbuster Internet Securit Suite 3.2

** DISPUTED ** Race condition in VirusBuster Internet Security Suite 3.2 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5181 GFI
Microsoft
Race Condition vulnerability in GFI Vipre Antivirus 4.0.3272

** DISPUTED ** Race condition in VIPRE Antivirus Premium 4.0.3272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5180 Anti Virus
Microsoft
Race Condition vulnerability in Anti-Virus Virusblockada32 3.12.12.4

** DISPUTED ** Race condition in VBA32 Personal 3.12.12.4 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5179 Trendmicro
Microsoft
Race Condition vulnerability in Trendmicro Internet Security 2010 17.50.1647.0000

** DISPUTED ** Race condition in Trend Micro Internet Security Pro 2010 17.50.1647.0000 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5178 Pctools
Microsoft
Race Condition vulnerability in Pctools Threatfire 4.7.0.17

** DISPUTED ** Race condition in ThreatFire 4.7.0.17 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5177 Sophos
Microsoft
Race Condition vulnerability in Sophos Endpoint Security and Control 9.0.5

** DISPUTED ** Race condition in Sophos Endpoint Security and Control 9.0.5 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5176 Pcsecurityshield
Microsoft
Race Condition vulnerability in Pcsecurityshield Security Shield 2010 13.0.16.313

** DISPUTED ** Race condition in Security Shield 2010 13.0.16.313 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5175 Pwicorp
Microsoft
Race Condition vulnerability in Pwicorp Privatefirewall 7.0.20.37

** DISPUTED ** Race condition in PrivateFirewall 7.0.20.37 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5174 Prevx
Microsoft
Race Condition vulnerability in Prevx 3.0.5.143

** DISPUTED ** Race condition in Prevx 3.0.5.143 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5173 Pctools
Microsoft
Race Condition vulnerability in Pctools Firewall 6.0.0.88

** DISPUTED ** Race condition in PC Tools Firewall Plus 6.0.0.88 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5172 Pandasecurity
Microsoft
Race Condition vulnerability in Pandasecurity Panda Internet Security 2010 15.01.00

** DISPUTED ** Race condition in Panda Internet Security 2010 15.01.00 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5171 Agnitum
Microsoft
Race Condition vulnerability in Agnitum Outpost Security Suite 6.7.3.3063.452.0726/7.0.3330.505.1221

** DISPUTED ** Race condition in Outpost Security Suite Pro 6.7.3.3063.452.0726 and 7.0.3330.505.1221 BETA on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5170 Online Solutions
Microsoft
Race Condition vulnerability in Online-Solutions Online Solutions Security Suite 1.5.14905.0

** DISPUTED ** Race condition in Online Solutions Security Suite 1.5.14905.0 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5169 Emisoft
Microsoft
Race Condition vulnerability in Emisoft Online Armor 4.0.0.35

** DISPUTED ** Race condition in Online Armor Premium 4.0.0.35 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5168 Symantec
Microsoft
Race Condition vulnerability in Symantec Norton Internet Security 2010 17.5.0.127

** DISPUTED ** Race condition in Symantec Norton Internet Security 2010 17.5.0.127 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5167 Norman
Microsoft
Race Condition vulnerability in Norman Security Suite 8.0

** DISPUTED ** Race condition in Norman Security Suite PRO 8.0 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5166 Mcafee
Microsoft
Race Condition vulnerability in Mcafee Total Protection 2010 10.0.580

** DISPUTED ** Race condition in McAfee Total Protection 2010 10.0.580 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5165 Torchsoft
Microsoft
Race Condition vulnerability in Torchsoft Malware Defender 2.6.0

** DISPUTED ** Race condition in Malware Defender 2.6.0 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5164 Kingsoft
Microsoft
Race Condition vulnerability in Kingsoft Personal Firewall 9 2009.05.07.70

** DISPUTED ** Race condition in KingSoft Personal Firewall 9 Plus 2009.05.07.70 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5163 Kaspersky
Microsoft
Race Condition vulnerability in Kaspersky Internet Security 2010 9.0.0.736

** DISPUTED ** Race condition in Kaspersky Internet Security 2010 9.0.0.736 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5162 Gdata
Microsoft
Race Condition vulnerability in Gdata Totalcare 2010

** DISPUTED ** Race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5161 F Secure
Microsoft
Race Condition vulnerability in F-Secure Internet Security 2010 10.00

** DISPUTED ** Race condition in F-Secure Internet Security 2010 10.00 build 246 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5160 Eset
Microsoft
Race Condition vulnerability in Eset Smart Security 4.2.35.3

** DISPUTED ** Race condition in ESET Smart Security 4.2.35.3 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5159 Drweb
Microsoft
Race Condition vulnerability in Drweb web Security Space 6.0.0.03100

** DISPUTED ** Race condition in Dr.Web Security Space Pro 6.0.0.03100 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5158 Softsphere
Microsoft
Race Condition vulnerability in Softsphere Defensewall Personal Firewall 3.00

** DISPUTED ** Race condition in DefenseWall Personal Firewall 3.00 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5157 Comodo
Microsoft
Race Condition vulnerability in Comodo Internet Security

Race condition in Comodo Internet Security before 4.1.149672.916 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5156 CA
Microsoft
Race Condition vulnerability in CA Internet Security Suite 2010 6.0.0.272

** DISPUTED ** Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5155 Eeye
Microsoft
Race Condition vulnerability in Eeye Blink 4.6.1

** DISPUTED ** Race condition in Blink Professional 4.6.1 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5154 Bitdefender
Microsoft
Race Condition vulnerability in Bitdefender Total Security 2010 13.0.20.347

** DISPUTED ** Race condition in BitDefender Total Security 2010 13.0.20.347 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5153 Avira
Microsoft
Race Condition vulnerability in Avira Premium Security Suite 10.0.0.536

** DISPUTED ** Race condition in Avira Premium Security Suite 10.0.0.536 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5152 AVG
Microsoft
Race Condition vulnerability in AVG Internet Security 9.0.791

** DISPUTED ** Race condition in AVG Internet Security 9.0.791 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5151 Avast
Microsoft
Race Condition vulnerability in Avast! Internet Security 5.0.462

** DISPUTED ** Race condition in avast! Internet Security 5.0.462 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-25 CVE-2010-5150 3Dprotect
Microsoft
Race Condition vulnerability in 3Dprotect 3D Eqsecure 4.2

** DISPUTED ** Race condition in 3D EQSecure Professional Edition 4.2 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.

6.2
2012-08-26 CVE-2010-5091 Silverstripe Code Injection vulnerability in Silverstripe

The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file.

6.0
2012-08-25 CVE-2012-4672 Apple Improper Input Validation vulnerability in Apple Ichat Server

Apple iChat Server does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.

5.8
2012-08-25 CVE-2012-4671 Psyced Improper Input Validation vulnerability in Psyced

psyced before 20120821 does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.

5.8
2012-08-25 CVE-2012-4669 Isode Improper Input Validation vulnerability in Isode M-Link 14.6/15.1

M-Link R14.6 before R14.6v14 and R15.1 before R15.1v10 does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.

5.8
2012-08-25 CVE-2012-3525 Jabber2
Jabberd2
Improper Input Validation vulnerability in multiple products

s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.

5.8
2012-08-26 CVE-2012-1177 Gnome Improper Input Validation vulnerability in Gnome Libgdata

libgdata before 0.10.2 and 0.11.x before 0.11.1 does not validate SSL certificates, which allows remote attackers to obtain user names and passwords via a man-in-the-middle (MITM) attack with a spoofed certificate.

5.1
2012-08-26 CVE-2012-4678 Munin Monitoring Resource Management Errors vulnerability in Munin-Monitoring Munin 2.0Rc4

munin-cgi-graph for Munin 2.0 rc4 does not delete temporary files, which allows remote attackers to cause a denial of service (disk consumption) via many requests to an image with unique parameters.

5.0
2012-08-26 CVE-2012-2147 Munin Monitoring Resource Management Errors vulnerability in Munin-Monitoring Munin 2.0Rc4

munin-cgi-graph in Munin 2.0 rc4 allows remote attackers to cause a denial of service (disk or memory consumption) via many image requests with large values in the (1) size_x or (2) size_y parameters.

5.0
2012-08-26 CVE-2012-1176 Fribidi Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Fribidi Pyfribidi

Buffer overflow in the fribidi_utf8_to_unicode function in PyFriBidi before 0.11.0 allows remote attackers to cause a denial of service (application crash) via a 4-byte utf-8 sequence.

5.0
2012-08-26 CVE-2011-5126 Bluecoat Information Exposure vulnerability in Bluecoat Sgos

Blue Coat ProxySG 6.1 before SGOS 6.1.5.1 and 6.2 before SGOS 6.2.2.1 writes the secure heap to core images, which allows context-dependent attackers to obtain sensitive authentication information by leveraging read access to a downloaded core file.

5.0
2012-08-26 CVE-2010-5190 Bluecoat Permissions, Privileges, and Access Controls vulnerability in Bluecoat products

The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypass JavaScript detection via HTML entities.

5.0
2012-08-26 CVE-2009-5132 Websense Denial-Of-Service vulnerability in Websense Web Filter

The Filtering Service in Websense Web Security and Web Filter before 6.3.1 Hotfix 106 and 7.x before 7.1 allow remote attackers to cause a denial of service (filtering outage) via a crafted URL.

5.0
2012-08-26 CVE-2009-5131 Websense Permissions, Privileges, and Access Controls vulnerability in Websense Email Security 6.1/7.0

The Receive Service in Websense Email Security before 7.1 does not recognize domain extensions in the blacklist, which allows remote attackers to bypass intended access restrictions and send e-mail messages via an SMTP session.

5.0
2012-08-26 CVE-2009-5129 Websense Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Websense V10000

The Websense V10000 appliance before 1.0.1 allows remote attackers to cause a denial of service (intermittent LDAP authentication outage) via a login attempt with an incorrect password.

5.0
2012-08-26 CVE-2009-5128 Websense Buffer Errors vulnerability in Websense V10000 1.0.0

The Websense V10000 appliance before 1.0.1 allows remote attackers to cause a denial of service (memory consumption and process crash) via a large file that is not properly handled during buffering.

5.0
2012-08-26 CVE-2012-4674 Pluxml Information Exposure vulnerability in Pluxml 0.3.1/5.1.5

PluXml before 5.1.6 allows remote attackers to obtain the installation path via the PHPSESSID.

5.0
2012-08-26 CVE-2010-5188 Silverstripe Information Exposure vulnerability in Silverstripe

SilverStripe 2.3.x before 2.3.6 allows remote attackers to obtain sensitive information via the (1) debug_memory parameter to core/control/Director.php or (2) debug_profile parameter to main.php.

5.0
2012-08-26 CVE-2010-5094 Silverstripe Permissions, Privileges, and Access Controls vulnerability in Silverstripe

The deleteinstallfiles function in control/ContentController.php in SilverStripe 2.3.x before 2.3.7 does not require ADMIN permissions, which allows remote attackers to delete index.php and "disrupt mod_rewrite-less URL routing."

5.0
2012-08-26 CVE-2010-5093 Silverstripe Permissions, Privileges, and Access Controls vulnerability in Silverstripe

Member_ProfileForm in security/Member.php in SilverStripe 2.3.x before 2.3.7 allows remote attackers to hijack user accounts by saving data using the email address (ID) of another user.

5.0
2012-08-26 CVE-2010-5087 Silverstripe Permissions, Privileges, and Access Controls vulnerability in Silverstripe

SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism and hijack the authentication of administrators via vectors related to "form action requests" using a controller.

5.0
2012-08-26 CVE-2012-3519 TOR Information Exposure vulnerability in TOR

routerlist.c in Tor before 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote attackers to obtain sensitive information about relay selection via a timing side-channel attack.

5.0
2012-08-26 CVE-2012-3518 TOR Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TOR

The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted (1) vote document or (2) consensus document.

5.0
2012-08-26 CVE-2012-3517 TOR Resource Management Errors vulnerability in TOR

Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.

5.0
2012-08-25 CVE-2012-3514 Nicolas Cannasse Cryptographic Issues vulnerability in Nicolas Cannasse Ocaml Xml-Light Library R233

OCaml Xml-Light Library before r234 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via unspecified vectors.

5.0
2012-08-25 CVE-2012-3501 Darold Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Darold Squidclamav

The squidclamav_check_preview_handler function in squidclamav.c in SquidClamav 5.x before 5.8 and 6.x before 6.7 passes an unescaped URL to a system command call, which allows remote attackers to cause a denial of service (daemon crash) via a URL with certain characters, as demonstrated using %0D or %0A.

5.0
2012-08-23 CVE-2012-4605 Websense Information Exposure vulnerability in Websense Email Security

The default configuration of the SMTP component in Websense Email Security 6.1 through 7.3 enables weak SSL ciphers in the "SurfControl plc\SuperScout Email Filter\SMTP" registry key, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.

5.0
2012-08-23 CVE-2010-5149 Websense Denial-Of-Service vulnerability in Websense Web Security

Websense Web Security and Web Filter before 6.3.3 Hotfix 27 and 7.x before 7.1.1 allow remote attackers to cause a denial of service (Blue Coat appliance integration outage) via a long URL.

5.0
2012-08-23 CVE-2010-5148 Websense Remote Security vulnerability in Websense Web Security

Websense Web Security and Web Filter before 7.1 Hotfix 21 do not set the secure flag for the Encrypted Session (SSL) cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

5.0
2012-08-23 CVE-2010-5147 Websense Denial-Of-Service vulnerability in Websense Web Security

The Remote Filtering component in Websense Web Security and Web Filter before 6.3.3 Hotfix 18 and 7.x before 7.1.1 allows remote attackers to cause a denial of service (daemon exit) via a large volume of traffic.

5.0
2012-08-23 CVE-2009-5122 Websense Information Exposure vulnerability in Websense Email Security 6.1/7.0/7.1

The Personal Email Manager component in Websense Email Security before 7.2 allows remote attackers to obtain potentially sensitive information from the JBoss status page via an unspecified query.

5.0
2012-08-23 CVE-2009-5121 Websense Permissions, Privileges, and Access Controls vulnerability in Websense Email Security 7.1

Websense Email Security 7.1 before Hotfix 4 allows remote attackers to bypass the sender-based blacklist by using the 8BITMIME EHLO keyword in the SMTP session.

5.0
2012-08-23 CVE-2008-7312 Websense Improper Input Validation vulnerability in Websense Enterprise

The Filtering Service in Websense Enterprise 5.2 through 6.3 does not consider the IP address during URL categorization, which makes it easier for remote attackers to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a specific IP address.

5.0
2012-08-22 CVE-2012-4593 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Application Control and Change Control

McAfee Application Control and Change Control 5.1.x and 6.0.0 do not enforce an intended password requirement in certain situations involving attributes of the password file, which allows local users to bypass authentication by executing a command.

5.0
2012-08-22 CVE-2012-4592 Mcafee Remote Security vulnerability in Mcafee Enterprise Mobility Manager 4.7

The Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 does not set the secure flag for the ASP.NET session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

5.0
2012-08-22 CVE-2012-4591 Mcafee Information Exposure vulnerability in Mcafee Enterprise Mobility Manager 4.7

About.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 discloses the name of the user account for an IIS worker process, which allows remote attackers to obtain potentially sensitive information by visiting this page.

5.0
2012-08-22 CVE-2011-5101 Mcafee Remote Security vulnerability in SaaS Endpoint Protection

The Rumor technology in McAfee SaaS Endpoint Protection before 5.2.4 allows remote attackers to relay e-mail messages via unspecified vectors, as demonstrated by relaying spam.

5.0
2012-08-21 CVE-2012-4219 Phpmyadmin Information Exposure vulnerability in PHPmyadmin 3.5.0.0/3.5.1.0/3.5.2.0

show_config_errors.php in phpMyAdmin 3.5.x before 3.5.2.1 allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message, related to lack of inclusion of the common.inc.php library file.

5.0
2012-08-21 CVE-2012-2190 IBM Cryptographic Issues vulnerability in IBM Websphere Application Server

IBM Global Security Kit (aka GSKit), as used in IBM HTTP Server in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.4, and 8.5.x before 8.5.0.1, allows remote attackers to cause a denial of service (daemon crash) via a crafted ClientHello message in the TLS Handshake Protocol.

5.0
2012-08-20 CVE-2012-0857 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

Multiple buffer overflows in the get_qcx function in the J2K decoder (j2kdec.c) in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service (application crash) via unspecified vectors.

5.0
2012-08-20 CVE-2012-0854 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

The dpcm_decode_frame function in libavcodec/dpcm.c in FFmpeg before 0.9.1 does not use the proper pointer after an audio API change, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors, which triggers a heap-based buffer overflow.

5.0
2012-08-20 CVE-2012-2387 Debian Information Exposure vulnerability in Debian Devotee 0.1

devotee 0.1 patch 2 uses a 32-bit seed for generating 48-bit random numbers, which makes it easier for remote attackers to obtain the secret monikers via a brute force attack.

5.0
2012-08-20 CVE-2012-2132 Gnome Improper Authentication vulnerability in Gnome Libsoup 2.32.2

libsoup 2.32.2 and earlier does not validate certificates or clear the trust flag when the ssl-ca-file does not exist, which allows remote attackers to bypass authentication by connecting with a SSL connection.

5.0
2012-08-22 CVE-2012-4582 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to reset the passwords of arbitrary administrative accounts via unspecified vectors.

4.9
2012-08-20 CVE-2012-3447 Openstack Permissions, Privileges, and Access Controls vulnerability in Openstack Folsom and Nova

virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root.

4.9
2012-08-25 CVE-2012-3480 GNU Numeric Errors vulnerability in GNU Glibc 2.16

Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.

4.6
2012-08-26 CVE-2012-4677 Google Permissions, Privileges, and Access Controls vulnerability in Google Tunnelblick

Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by using a crafted Info.plist file to control the gOkIfNotSecure value.

4.4
2012-08-26 CVE-2012-2146 Ematia Cryptographic Issues vulnerability in Ematia Elixir 0.8.0

Elixir 0.8.0 uses Blowfish in CFB mode without constructing a unique initialization vector (IV), which makes it easier for context-dependent users to obtain sensitive information and decrypt the database.

4.3
2012-08-26 CVE-2012-1296 Elefantcms Cross-Site Scripting vulnerability in Elefantcms

Multiple cross-site scripting (XSS) vulnerabilities in apps/admin/handlers/preview.php in Elefant CMS 1.0.x before 1.0.2-Beta and 1.1.x before 1.1.5-Beta allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body parameter to admin/preview.

4.3
2012-08-26 CVE-2011-5125 Bluecoat Cross-Site Scripting vulnerability in Bluecoat Director 5.4/5.5/5.5.2

Cross-site scripting (XSS) vulnerability in Blue Coat Director before 5.5.2.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving the HTTP TRACE method.

4.3
2012-08-26 CVE-2010-5192 Bluecoat Cross-Site Scripting vulnerability in Bluecoat products

Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3
2012-08-26 CVE-2009-5130 Websense Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Websense Email Security 6.1/7.0

The Rules Service in Websense Email Security before 7.1 allows remote attackers to cause a denial of service (service crash) via an attachment with a crafted size.

4.3
2012-08-26 CVE-2012-4675 Pluxml Cross-Site Scripting vulnerability in Pluxml 0.3.1/5.1.5

Cross-site scripting (XSS) vulnerability in PluXml 5.1.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to file update.

4.3
2012-08-26 CVE-2010-5187 Silverstripe Information Exposure vulnerability in Silverstripe

SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1, when running on servers with certain configurations, allows remote attackers to obtain sensitive information via a direct request to PHP files in the (1) sapphire, (2) cms, or (3) mysite folders, which reveals the installation path in an error message.

4.3
2012-08-26 CVE-2010-5095 Silverstripe Cross-Site Scripting vulnerability in Silverstripe

Cross-site scripting (XSS) vulnerability in SilverStripe 2.3.x before 2.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to DataObjectSet pagination.

4.3
2012-08-26 CVE-2010-5089 Silverstripe Permissions, Privileges, and Access Controls vulnerability in Silverstripe

SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.

4.3
2012-08-26 CVE-2011-5122 Comodo Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 5.3.175888.1227 allows remote attackers to cause a denial of service (application crash) via a crafted compressed file.

4.3
2012-08-26 CVE-2011-5120 Comodo Denial-Of-Service vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 5.4.189822.1355 allows remote attackers to cause a denial of service (application crash) via a crafted .PST file.

4.3
2012-08-26 CVE-2010-5186 Comodo Denial-Of-Service vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to cause a denial of service (application crash) via a crafted file.

4.3
2012-08-26 CVE-2009-5127 Comodo Denial-Of-Service vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a denial of service (application crash) via a crafted file.

4.3
2012-08-26 CVE-2009-5126 Comodo Denial-Of-Service vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 3.8.65951.477 allows remote attackers to cause a denial of service (application crash) via a crafted file.

4.3
2012-08-26 CVE-2009-5125 Comodo Unspecified vulnerability in Comodo Internet Security

Comodo Internet Security before 3.9.95478.509 allows remote attackers to bypass malware detection in an RAR archive via an unspecified manipulation of the archive file format.

4.3
2012-08-26 CVE-2009-5124 Comodo Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 3.11.108364.552 allows remote attackers to cause a denial of service (application crash) via a crafted packed file.

4.3
2012-08-26 CVE-2009-5123 Comodo Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Comodo Internet Security

The Antivirus component in Comodo Internet Security before 3.11.108364.552 allows remote attackers to cause a denial of service (memory consumption) via a crafted compressed file.

4.3
2012-08-25 CVE-2012-4668 Roundcube Cross-Site Scripting vulnerability in Roundcube Webmail

Cross-site scripting (XSS) vulnerability in Roundcube Webmail 0.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the signature in an email.

4.3
2012-08-25 CVE-2012-4667 Darold Cross-Site Scripting vulnerability in Darold Squidclamav

Multiple cross-site scripting (XSS) vulnerabilities in SquidClamav 5.x before 5.8 allow remote attackers to inject arbitrary web script or HTML via the (1) url, (2) virus, (3) source, or (4) user parameter to (a) clwarn.cgi, (b) clwarn.cgi.de_DE, (c) clwarn.cgi.en_EN, (d) clwarn.cgi.fr_FR, (e) clwarn.cgi.pt_BR, or (f) clwarn.cgi.ru_RU in cgi-bin/.

4.3
2012-08-25 CVE-2012-3508 Roundcube Cross-Site Scripting vulnerability in Roundcube Webmail 0.8.0

Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.

4.3
2012-08-25 CVE-2012-0048 Openttd Resource Management Errors vulnerability in Openttd

OpenTTD 0.3.5 through 1.1.4 allows remote attackers to cause a denial of service (game pause) by connecting to the server and not finishing the (1) authorization phase or (2) map download, aka a "slow read" attack.

4.3
2012-08-24 CVE-2012-2984 Websense Cross-Site Scripting vulnerability in Websense Content Gateway 7.7

Multiple cross-site scripting (XSS) vulnerabilities in monitor/m_overview.ink in Websense Content Gateway before 7.7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) menu or (2) item parameter.

4.3
2012-08-23 CVE-2011-5115 Dlguard Cross-Site Scripting vulnerability in Dlguard 4.5/4.6

Cross-site scripting (XSS) vulnerability in DLGuard, possibly 4.6 and earlier, allows remote attackers to inject arbitrary web script or HTML via the searchCart parameter to index.php.

4.3
2012-08-23 CVE-2011-5114 Barraguard Cross-Site Scripting vulnerability in Barraguard Barracuda Link Balancer Series Firmware 1.3.2.005

Multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) zoneid or (2) scope parameter.

4.3
2012-08-23 CVE-2011-5108 Adaptcms Cross-Site Scripting vulnerability in Adaptcms 2.0.0/2.0.1

Cross-site scripting (XSS) vulnerability in config.php in AdaptCMS 2.0.0 and 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3
2012-08-23 CVE-2011-5107 Wordpress Cross-Site Scripting vulnerability in Wordpress Alert Before YOU Post

Cross-site scripting (XSS) vulnerability in post_alert.php in Alert Before Your Post plugin, possibly 0.1.1 and earlier, for WordPress allows remote attackers to inject arbitrary web script or HTML via the name parameter.

4.3
2012-08-23 CVE-2011-5106 Fractalia
Wordpress
Cross-Site Scripting vulnerability in Fractalia Flexible Custom Post Type

Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter.

4.3
2012-08-23 CVE-2011-5105 Zohocorp Cross-Site Scripting vulnerability in Zohocorp Manageengine Adselfservice Plus 4.5

Multiple cross-site scripting (XSS) vulnerabilities in EmployeeSearch.cc in ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 allow remote attackers to inject arbitrary web script or HTML via the (1) searchType and (2) searchString parameters, a different vulnerability than CVE-2010-3274.

4.3
2012-08-23 CVE-2011-5104 Getshopped
Wordpress
Cross-Site Scripting vulnerability in Getshopped WP E-Commerce

Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter.

4.3
2012-08-23 CVE-2012-4604 Websense Improper Authentication vulnerability in Websense web Security

The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe.

4.3
2012-08-23 CVE-2012-2582 Otrs Cross-Site Scripting vulnerability in Otrs and Otrs Itsm

Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.13, 3.0.x before 3.0.15, and 3.1.x before 3.1.9, and OTRS ITSM 2.1.x before 2.1.5, 3.0.x before 3.0.6, and 3.1.x before 3.1.6, allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a Cascading Style Sheets (CSS) expression property in the STYLE attribute of an arbitrary element or (2) UTF-7 text in an HTTP-EQUIV="CONTENT-TYPE" META element.

4.3
2012-08-23 CVE-2010-5145 Websense
Microsoft
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Websense web Filter and Websense web Security

The Filtering Service in Websense Web Security and Web Filter before 6.3.1 Hotfix 136 and 7.x before 7.1.1 on Windows allows remote attackers to cause a denial of service (filtering outage) via a crafted sequence of characters in a URI.

4.3
2012-08-23 CVE-2010-5144 Websense Permissions, Privileges, and Access Controls vulnerability in Websense products

The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for web traffic via an HTTP Via header.

4.3
2012-08-23 CVE-2009-5120 Websense Configuration vulnerability in Websense web Filter and Websense web Security

The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 allows connections to TCP port 1812 from arbitrary source IP addresses, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via UTF-7 text to the 404 error page of a Project Woodstock service on this port.

4.3
2012-08-23 CVE-2009-5119 Websense Configuration vulnerability in Websense web Filter and Websense web Security

The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.

4.3
2012-08-22 CVE-2012-3502 Apache Information Exposure vulnerability in Apache Http Server 2.4.0/2.4.1/2.4.2

The proxy functionality in (1) mod_proxy_ajp.c in the mod_proxy_ajp module and (2) mod_proxy_http.c in the mod_proxy_http module in the Apache HTTP Server 2.4.x before 2.4.3 does not properly determine the situations that require closing a back-end connection, which allows remote attackers to obtain sensitive information in opportunistic circumstances by reading a response that was intended for a different client.

4.3
2012-08-22 CVE-2012-4597 Mcafee Cross-Site Scripting vulnerability in Mcafee Email and web Security and Email Gateway

Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote attackers to inject arbitrary web script or HTML via vectors related to the McAfee Security Appliance Management Console/Dashboard.

4.3
2012-08-22 CVE-2012-4596 Mcafee Path Traversal vulnerability in Mcafee Email Gateway 7.0.0/7.0.1

Directory traversal vulnerability in McAfee Email Gateway (MEG) 7.0.0 and 7.0.1 allows remote authenticated users to bypass intended access restrictions and download arbitrary files via a crafted URL.

4.3
2012-08-22 CVE-2012-4590 Mcafee Cross-Site Scripting vulnerability in Mcafee Enterprise Mobility Manager 4.7

Multiple cross-site scripting (XSS) vulnerabilities in About.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 might allow remote attackers to inject arbitrary web script or HTML via the (1) User Agent or (2) Connection variable.

4.3
2012-08-22 CVE-2012-4588 Mcafee Credentials Management vulnerability in Mcafee products

McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.

4.3
2012-08-22 CVE-2012-4580 Mcafee Cross-Site Scripting vulnerability in Mcafee Email and web Security and Email Gateway

Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote attackers to inject arbitrary web script or HTML via vectors related to the McAfee Security Appliance Management Console/Dashboard.

4.3
2012-08-22 CVE-2012-0681 Apple Cryptographic Issues vulnerability in Apple Remote Desktop 3.5.2/3.5.3/3.6.0

Apple Remote Desktop before 3.6.1 does not recognize the "Encrypt all network data" setting during connections to third-party VNC servers, which allows remote attackers to obtain cleartext VNC session content by sniffing the network.

4.3
2012-08-21 CVE-2012-4168 Adobe
Apple
Microsoft
Linux
Google
Information Exposure vulnerability in Adobe Air, AIR SDK and Flash Player

Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow remote attackers to read content from a different domain via a crafted web site.

4.3
2012-08-21 CVE-2012-3302 IBM Cross-Site Scripting vulnerability in IBM Lotus Domino

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL accessed during use of Domino Help through the Domino HTTP server.

4.3
2012-08-21 CVE-2012-3301 IBM Improper Input Validation vulnerability in IBM Lotus Domino

Multiple CRLF injection vulnerabilities in the HTTP server in IBM Lotus Domino 8.5.x before 8.5.4 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input involving (1) Mozilla Firefox 3.0.9 and earlier or (2) unspecified browsers.

4.3
2012-08-21 CVE-2012-3293 IBM Cross-Site Scripting vulnerability in IBM Websphere Application Server

Cross-site scripting (XSS) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.4, and 8.5.x before 8.5.0.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving FRAME elements, related to a cross-frame scripting (XFS) issue.

4.3
2012-08-20 CVE-2012-4052 Jease Cross-Site Scripting vulnerability in Jease

Multiple cross-site scripting (XSS) vulnerabilities in Jease before 2.9, when creating a comment, allow remote attackers to inject arbitrary web script or HTML via the (1) author, (2) subject, or (3) comment parameter.

4.3
2012-08-20 CVE-2011-4579 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The svq1_decode_frame function in the SVQ1 decoder (svq1dec.c) in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (memory corruption) via a crafted SVQ1 stream, related to "dimensions changed."

4.3
2012-08-20 CVE-2011-4353 Ffmpeg
Libav
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

The (1) av_image_fill_pointers, (2) vp5_parse_coeff, and (3) vp6_parse_coeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted VP5 or VP6 stream.

4.3
2012-08-20 CVE-2012-4236 Totalshopuk Cross-Site Scripting vulnerability in Totalshopuk Ecommerce

Cross-site scripting (XSS) vulnerability in the refresh_page function in application/modules/_main/views/_top.php in Total Shop UK eCommerce Open Source before 2.1.2_p1 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

4.3
2012-08-20 CVE-2012-3461 Cypherpunks Buffer Errors vulnerability in Cypherpunks Libotr 3.1.0/3.2.0

The (1) otrl_base64_otr_decode function in src/b64.c; (2) otrl_proto_data_read_flags and (3) otrl_proto_accept_data functions in src/proto.c; and (4) decode function in toolkit/parse.c in libotr before 3.2.1 allocates a zero-length buffer when decoding a base64 string, which allows remote attackers to cause a denial of service (application crash) via a message with the value "?OTR:===.", which triggers a heap-based buffer overflow.

4.3
2012-08-20 CVE-2012-0850 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

The sbr_qmf_synthesis function in libavcodec/aacsbr.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted mpg file that triggers memory corruption involving the v_off variable, probably a buffer underflow.

4.3
2012-08-20 CVE-2012-0848 Ffmpeg Buffer Errors vulnerability in Ffmpeg 0.9.1

Heap-based buffer overflow in the ws_snd_decode_frame function in libavcodec/ws-snd1.c in FFmpeg 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted media file, related to an incorrect calculation, aka "wrong samples count."

4.3
2012-08-20 CVE-2012-0847 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

Heap-based buffer overflow in the avfilter_filter_samples function in libavfilter/avfilter.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted media file.

4.3
2012-08-20 CVE-2011-3936 Ffmpeg
Libav
Improper Input Validation vulnerability in multiple products

The dv_extract_audio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DV file.

4.3
2012-08-26 CVE-2010-5090 Silverstripe Permissions, Privileges, and Access Controls vulnerability in Silverstripe

SilverStripe before 2.4.2 allows remote authenticated users to change administrator passwords via vectors related to admin/security.

4.0
2012-08-22 CVE-2012-4594 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Epolicy Orchestrator

McAfee ePolicy Orchestrator (ePO) 4.6.1 and earlier allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information from arbitrary reporting panels, via a modified ID value in a console URL.

4.0
2012-08-22 CVE-2012-4585 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to read arbitrary files via a crafted URL.

4.0
2012-08-22 CVE-2012-4583 Mcafee Information Exposure vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to obtain the session tokens of arbitrary users by navigating within the Dashboard.

4.0
2012-08-20 CVE-2012-4362 HP Credentials Management vulnerability in HP San/Iq 9.5

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.

4.0

23 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2012-08-24 CVE-2012-0713 IBM
Linux
Microsoft
Multiple Security vulnerability in IBM DB2

Unspecified vulnerability in the XML feature in IBM DB2 9.7 before FP6 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary XML files via unknown vectors.

3.5
2012-08-22 CVE-2012-4587 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee products

McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1, when one-time provisioning (OTP) mode is enabled, have an improper dependency on DNS SRV records, which makes it easier for remote attackers to discover user passwords by spoofing the EMM server, as demonstrated by a password entered on an iOS device.

3.5
2012-08-22 CVE-2012-4586 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, accesses files with the privileges of the root user, which allows remote authenticated users to bypass intended permission settings by requesting a file.

3.5
2012-08-22 CVE-2012-4584 Mcafee Cryptographic Issues vulnerability in Mcafee Email and web Security and Email Gateway

McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not properly encrypt system-backup data, which makes it easier for remote authenticated users to obtain sensitive information by reading a backup file, as demonstrated by obtaining password hashes.

3.5
2012-08-21 CVE-2012-4579 Phpmyadmin Cross-Site Scripting vulnerability in PHPmyadmin

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations (1) TRUNCATE or (2) DROP link for a crafted table name, (3) the Add Trigger popup within a Triggers page that references crafted table names, (4) an invalid trigger-creation attempt for a crafted table name, (5) crafted data in a table, or (6) a crafted tooltip label name during GIS data visualization, a different issue than CVE-2012-4345.

3.5
2012-08-21 CVE-2012-4345 Phpmyadmin Cross-Site Scripting vulnerability in PHPmyadmin

Multiple cross-site scripting (XSS) vulnerabilities in the Database Structure page in phpMyAdmin 3.4.x before 3.4.11.1 and 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via (1) a crafted table name during table creation, or a (2) Empty link or (3) Drop link for a crafted table name.

3.5
2012-08-21 CVE-2012-2985 Cutesoft Components Cross-Site Scripting vulnerability in Cutesoft Components Cute Editor 6.4

Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.

3.5
2012-08-25 CVE-2012-3507 Roundcube Cross-Site Scripting vulnerability in Roundcube Webmail

Cross-site scripting (XSS) vulnerability in program/steps/mail/func.inc in RoundCube Webmail before 0.8.0, when using the Larry skin, allows remote attackers to inject arbitrary web script or HTML via the email message subject.

2.6
2012-08-22 CVE-2012-2687 Apache Cross-Site Scripting vulnerability in Apache Http Server

Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is not properly handled during construction of a variant list.

2.6
2012-08-22 CVE-2010-5143 Mcafee Permissions, Privileges, and Access Controls vulnerability in Mcafee Virusscan Enterprise

McAfee VirusScan Enterprise before 8.8 allows local users to disable the product by leveraging administrative privileges to execute an unspecified Metasploit Framework module.

2.6
2012-08-20 CVE-2012-0856 Ffmpeg Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg

Heap-based buffer overflow in the MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg before 0.9.1, when the lowres option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted H263 media file.

2.6
2012-08-26 CVE-2012-2297 Creative Commons Module Project
Drupal
Cross-Site Scripting vulnerability in Creative Commons Module Project Creativecommons 6.X1.0

Multiple cross-site scripting (XSS) vulnerabilities in the Creative Commons module 6.x-1.x before 6.x-1.1 for Drupal allow remote authenticated users with the administer creative commons permission to inject arbitrary web script or HTML via the (1) creativecommons_user_message or (2) creativecommons_site_license_additional_text parameter.

2.1
2012-08-23 CVE-2010-5146 Websense Permissions, Privileges, and Access Controls vulnerability in Websense web Filter and Websense web Security

The Remote Filtering component in Websense Web Security and Web Filter before 7.1 Hotfix 66 allows local users to bypass filtering by (1) renaming the WDC.exe file or (2) deleting driver files.

2.1
2012-08-22 CVE-2012-4589 Mcafee Unspecified vulnerability in Mcafee Enterprise Mobility Manager 4.7

Login.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

2.1
2012-08-21 CVE-2012-4578 Pawel Jakub Dawidek
Freebsd
Cryptographic Issues vulnerability in Pawel Jakub Dawidek Geli 4/7

The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack.

2.1
2012-08-20 CVE-2012-4238 Tecnick Cross-Site Scripting vulnerability in Tecnick Tcexam

Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam before 11.3.008 allows remote authenticated users with level 5 or greater permissions to inject arbitrary web script or HTML via the question_subject_id parameter.

2.1
2012-08-26 CVE-2010-5092 Silverstripe Credentials Management vulnerability in Silverstripe 2.4.0

The Add Member dialog in the Security admin page in SilverStripe 2.4.0 saves user passwords in plaintext, which allows local users to obtain sensitive information by reading a database.

1.9
2012-08-26 CVE-2011-5119 Comodo Race Condition vulnerability in Comodo Internet Security

Multiple race conditions in Comodo Internet Security before 5.8.211697.2124 allow local users to bypass the Defense+ feature via unspecified vectors.

1.9
2012-08-26 CVE-2011-5118 Comodo Race Condition vulnerability in Comodo Internet Security

Multiple race conditions in Comodo Internet Security before 5.8.213334.2131 allow local users to bypass the Defense+ feature via unspecified vectors.

1.9
2012-08-22 CVE-2009-5117 Mcafee Information Exposure vulnerability in Mcafee Host Data Loss Prevention 3.0.100.6/9.0.0.416

The Web Post Protection feature in McAfee Host Data Loss Prevention (DLP) 3.x before 3.0.100.10 and 9.x before 9.0.0.422, when HTTP Capture mode is enabled, allows local users to obtain sensitive information from web traffic by reading unspecified files.

1.9
2012-08-26 CVE-2012-2103 Munin Monitoring Link Following vulnerability in Munin-Monitoring Munin 1.4.5

The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

1.2
2012-08-26 CVE-2012-4676 Google Link Following vulnerability in Google Tunnelblick

The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users to delete arbitrary files by constructing a (1) symlink or (2) hard link, a different vulnerability than CVE-2012-3485.

1.2
2012-08-26 CVE-2012-3487 Google Race Condition vulnerability in Google Tunnelblick

Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.

1.2