If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#1
|
|||
|
|||
us.cert.gov bulletin - Vulnerability Summary for the Week of May 14, 2007
Dual booters should take note of continuing vulnerabilities in certain
NT5(+) based applications, and other indications OS related. http://www.us-cert.gov/cas/bulletins/SB07-141.html Comodo -- Comodo Personal Firewall Comodo -- Comodo Firewall Pro Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified identifier that is one, two, or three greater than the canonical identifier. unknown 2007-05-16 7.0 CVE-2007-2729 BUGTRAQ OTHER-REF Comodo -- Comodo Personal Firewall Comodo -- Comodo Firewall Pro Check Point Software -- ZoneAlarm Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified identifier that is one, two, or three greater than the canonical identifier. unknown 2007-05-16 7.0 CVE-2007-2730 BUGTRAQ OTHER-REF - http://www.matousec.com/info/advisor...identifier.php Computer Associates -- eTrust Integrated Threat Management Computer Associates -- eTrust PestPatrol Computer Associates -- eTrust EZ Antivirus Stack-based buffer overflow in the inoweb Console Server in CA Anti-Virus for the Enterprise r8, Threat Manager r8, Anti-Spyware for the Enterprise r8, and Protection Suites r3 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. unknown 2007-05-11 10.0 CVE-2007-2522 OTHER-REF BID FRSIRT BUGTRAQ OTHER-REF CERT-VN SECTRACK SECUNIA - http://secunia.com/advisories/25202 Computer Associates -- Integrated Threat Management Computer Associates -- Anti-Virus CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0. unknown 2007-05-11 7.0 CVE-2007-2523 IDEFENSE OTHER-REF BID FRSIRT BUGTRAQ OTHER-REF CERT-VN SECTRACK SECUNIA - http://secunia.com/advisories/25202 -- MEB http://peoplescounsel.orgfree.com/ _______________ |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
MS Security Bulletin (MS06-014 - MDAC vulnerability) - Windows-98status? | Virus Guy | General | 23 | April 20th 06 11:53 AM |
Microsoft Security Bulletin MS04-023 Vulnerability in HTML HelpCould Allow Code Execution (840315) | David Ross | General | 14 | July 17th 04 09:52 PM |
Microsoft Security Bulletin MS04-024 - Vulnerability in Window | The Unknown P | General | 4 | July 15th 04 02:20 AM |
Microsoft Security Bulletin MS04-024 - Vulnerability in Windows Shell Could Allow Remote Code Execution (839645) | Gary S. Terhune | General | 2 | July 14th 04 05:06 AM |
Microsoft Security Bulletin MS04-024 - Vulnerability in Windows Shell Could Allow Remote Code Execution (839645) | Gary S. Terhune | General | 2 | July 14th 04 05:06 AM |