Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

Adobe Reader and Acrobat JavaScript Memory Corruption Vulnerabilities

Two vulnerabilities have been identified in Adobe Reader and Acrobat, which could be exploited by attackers to compromise a vulnerable system.1. Due to a memory corruption error when processing specially crafted data passed to the "getAnnots()" JavaScript method, which could be exploited by...
Last Update Date: 28 Jan 2011 Release Date: 29 Apr 2009 5695 Views

RISK: Medium Risk

Medium Risk

Mozilla Firefox, SeaMonkey and Thunderbird Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Mozilla Firefox, SeaMonkey and Thunderbird, which could be exploited by attackers to bypass security restrictions, gain knowledge of sensitive information, cause a denial of service or compromise a vulnerable system.1. Due to memory corruption errors in the...
Last Update Date: 28 Jan 2011 Release Date: 22 Apr 2009 5597 Views

RISK: Medium Risk

Medium Risk

BlackBerry Products PDF Distiller Unspecified Vulnerabilities

Some vulnerabilities have been identified in in BlackBerry Enterprise Server and BlackBerry Professional Software, which could be exploited by remote attackers to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.The vulnerabilities are caused due to unspecified errors within the PDF distiller...
Last Update Date: 28 Jan 2011 Release Date: 20 Apr 2009 5375 Views

RISK: Medium Risk

Medium Risk

Micosoft Whale IAG ActiveX Remote Buffer Overflow Vulnerabilities

Multiple vulnerabilities have been identified in Microsoft Whale Communications Intelligent Application Gateway (IAG) 2007, which could be exploited by remote attackers to comrpromise an affected system. These issues are caused by buffer overflow errors in the "WhlMgr.dll" ActiveX control when processing a...
Last Update Date: 28 Jan 2011 Release Date: 17 Apr 2009 5317 Views

RISK: Medium Risk

Medium Risk

Novell Kerberos KDC Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Novell Kerberos KDC, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. These issues are caused by errors in Kerberos.1. A NULL pointer dereference error in the "spnego_gss_accept_sec_context()" [...
Last Update Date: 28 Jan 2011 Release Date: 17 Apr 2009 5369 Views

RISK: Medium Risk

Medium Risk

DivX Web Player Stream Format Chunk Buffer Overflow Vulnerability

A vulnerability has been identified in DivX Web Player, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by a signedness error in the processing of "STRF" (Stream Format) chunks within a DivX file, which could be...
Last Update Date: 28 Jan 2011 Release Date: 16 Apr 2009 5545 Views

RISK: Medium Risk

Medium Risk

Oracle and BEA Products Multiple Vulnerabilities

Multiple vulnerabilities have been identified in various Oracle and BEA products, which could be exploited by remote or local attackers to cause a denial of service, read and manipulate certain data, disclose sensitive information, conduct SQL injection attacks, bypass security restrictions, or execute arbitrary...
Last Update Date: 28 Jan 2011 Release Date: 16 Apr 2009 5431 Views

RISK: Medium Risk

Medium Risk

Sun Solaris Adobe Reader Multiple Vulnerabilities

Multiple vulnerability have been identified in Sun Solaris, which could be exploited by attackers to compromise a vulnerable system. These issues are caused by errors in Adobe Reader.
Last Update Date: 28 Jan 2011 Release Date: 15 Apr 2009 5634 Views

RISK: Medium Risk

Medium Risk

Microsoft Internet Explorer Multiple Vulnerabilities( 15 April 2009 )

1. Blended Threat Remote Code Execution VulnerabilityA blended threat remote code execution vulnerability exists in the way that Internet Explorer locates and opens files on the system. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page...
Last Update Date: 28 Jan 2011 Release Date: 15 Apr 2009 5268 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Multiple Privilege Escalation Vulnerabilities( 15 April 2009 )

1. Windows MSDTC Service Isolation VulnerabilityAn elevation of privilege vulnerability exists in the Microsoft Distributed Transaction Coordinator (MSDTC) transaction facility in Microsoft Windows platforms. MSDTC leaves a NetworkService token that can be impersonated by any process that calls into it. The vulnerability allows a process...
Last Update Date: 28 Jan 2011 Release Date: 15 Apr 2009 5453 Views