Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

OpenOffice "rtl_allocateMemory()" Integer Overflow Vulnerability

A vulnerability has been identified in OpenOffice.org, which could be exploited by attackers to cause a denial of service or compromise an affected system. This issue is caused by an integer overflow error in the custom memory allocation function "rtl_allocateMemory()" when processing malformed data...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5245 Views

RISK: Medium Risk

Medium Risk

SNMPv3 Authentication Bypass Vulnerability

A vulnerability has been identified in the way implementations of SNMPv3 handle specially crafted packets may allow authentication bypass.The Simple Network Management Protocol (SNMP) is a widely deployed protocol that is commonly used to monitor and manage network devices. SNMPv3 (RFC 3410) supports...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5371 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Pragmatic General Multicast (PGM) Multiple Vulnerabilities( 11 June 2008 )

1. PGM Invalid Length VulnerabilityA denial of service vulnerability exists in implementations of the Pragmatic General Multicast (PGM) protocol on Microsoft Windows XP and Windows Server 2003. The vulnerability is due to improper validation of specially crafted PGM packets. An attacker who successfully exploited this...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5200 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows WINS Memory Overwrite Vulnerability( 11 June 2008 )

An elevation of privilege vulnerability exists in the Windows Internet Name Service (WINS) in the way that WINS does not sufficiently validate the data structures within specially crafted WINS network packets. The vulnerability could allow a local attacker to run code with elevated privileges. An attacker...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5022 Views

RISK: Medium Risk

Medium Risk

Microsoft Internet Explorer Multiple Vulnerabilities( 11 June 2008 )

1. HTML Objects Memory Corruption VulnerabilityA remote code execution vulnerability exists in the way Internet Explorer displays a Web page that contains certain unexpected method calls to HTML objects. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4938 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Bluetooth Vulnerability( 11 June 2008 )

A remote code execution vulnerability exists in the Bluetooth stack in Microsoft Windows because the Bluetooth stack does not correctly handle a large number of service description requests. The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulnerability could...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4883 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows DirectX MJPEG/SAMI File Processing Vulnerabilities( 11 June 2008 )

1. MJPEG Decoder VulnerabilityA remote code execution vulnerability exists in the way that the Windows MJPEG Codec handles MJPEG streams in AVI or ASF files. A user would have to preview or play a specially crafted MJPEG file for the vulnerability to be exploited.2. SAMI...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5167 Views

RISK: Medium Risk

Medium Risk

Apple QuickTime Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple QuickTime, which could be exploited by remote attackers to take complete control of an affected system. These issues are caused by memory corruption and implementation errors when processing specially crafted PICT images, AAC-encoded or Indeo video codec media...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 5200 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Active Directory Vulnerability( 11 June 2008 )

A denial of service vulnerability exists in implementations of Active Directory on Microsoft Windows 2000 Server, Windows Server 2003, and Windows Server 2008. The vulnerability also exists in implementations of Active Directory Application Mode (ADAM) when installed on Windows XP and Windows Server 2003 and...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4952 Views

RISK: Medium Risk

Medium Risk

VMware Products Multiple Vulnerabilities

Multiple vulnerabilities have been identified in various VMware products, which could be exploited by local or remote attackers to bypass security restrictions, cause a denial of service or compromise a vulnerable system.1. Due to an input validation error in the "HGFS.sys" ...
Last Update Date: 28 Jan 2011 Release Date: 6 Jun 2008 5720 Views