@RISK: The Consensus Security Alert http://www.sans.org/newsletters/risk/display.php All Updates From Vol: 11 - Issue: 11 en-us (C) SANS Institute 2012 webmaster@sans.org SANS RSS Feed http://www.sans.org/images/rss_logo.gif http://www.sans.org/newsletters/risk/display.php SANSFIRE 2011 http://www.sans.org/info/74039 http://www.sans.org/info/74039 SANSFIRE 2011 (1) HIGH: Google Chrome Sandbox Escapes http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely1 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely1 Category: Widely Deployed Software

Affected:

  • Google Chrome Prior to 17.0.963.79

]]> (2) HIGH: Microsoft Remote Desktop Protocol Vulnerability http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely2 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely2 Category: Widely Deployed Software

Affected:

  • Windows 7
  • Windows Server 2003
  • Windows Server 2008
  • Windows Vista
  • Windows XP

]]> (3) HIGH: Mozilla Firefox Use-After-Free Vulnerability http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely3 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#widely3 Category: Widely Deployed Software

Affected:

  • Firefox prior to 11.0

]]> 2.8 Mozilla Firefox/Thunderbird/SeaMonkey "shlwapi.dll" Use-After-Free Memory Corruption http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#2.8 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#2.8 CVEs: CVE: CVE-2012-045410.0.3, Thunderbird versions prior to Thunderbird ESR versionsprior to and SeaMonkey versions prior to are affected.

Platform: Cross Platform

]]> 12.11.11 IBM DB2 Multiple Security Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.11 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.11 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 12.11.12 IBM Maximo Asset Management Multiple Security Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.12 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.12 CVEs: CVE:CVE-2012-0195,CVE-2011-4819,CVE-2011-4818,CVE-2011-4817,CVE-2011-4816,CVE-2011-1397,CVE-2011-1396,CVE-2011-1395,CVE-2011-1394

Platform: Cross Platform

]]> 12.11.13 Expat XML Parsing Multiple Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.13 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.13 CVEs: CVE: CVE-2012-0876,CVE-2012-1148,CVE-2012-1147

Platform: Cross Platform

]]> 12.11.14 Google Chrome Remote Code Execution http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.14 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.14 CVEs: CVE: CVE-2011-3047

Platform: Cross Platform

]]> 12.11.15 OpenLDAP LDAP Search Request Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.15 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.15 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 12.11.16 Apple Safari International Domain Name URI Spoofing http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.16 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.16 CVEs: CVE: CVE-2012-0584

Platform: Cross Platform

]]> 12.11.5 Microsoft Expression "wintab32.dll" DLL Loading Arbitrary Code Execution http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.5 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.5 CVEs: CVE: CVE-2012-0016

Platform: Other Microsoft Products

]]> 12.11.6 Microsoft Visual Studio Add-In Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.6 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.6 CVEs: CVE: CVE-2012-0008

Platform: Other Microsoft Products

]]> 12.11.7 DAEMON Tools "IOCTL" Handling Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.7 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.7 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 12.11.8 VMware vCenter Chargeback Manager Information Disclosure and Denial of Service Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.8 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.8 CVEs: CVE: CVE-2012-1472

Platform: Third Party Windows Apps

]]> 12.11.9 XnView Multiple Buffer Overflow Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.9 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.9 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 12.11.10 Vegas Movie Studio HD "CFHDDecoder.dll" DLL Loading Arbitrary Code Execution http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.10 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.10 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 12.11.23 LotusCMS Multiple PHP Code Execution Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.23 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.23 CVEs: CVE: Not Available

Platform: Web Application

]]> 12.11.24 Jenkins Multiple Cross-Site Scripting and Directory Traversal Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.24 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.24 CVEs: CVE: CVE-2012-0325,CVE-2012-0324

Platform: Web Application

]]> 12.11.25 Zend Server Multiple HTML Injection Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.25 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.25 CVEs: CVE: Not Available

Platform: Web Application

]]> 12.11.26 Invision Power Board Unspecified HTML Injection http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.26 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.26 CVEs: CVE: Not Available

Platform: Web Application

]]> 12.11.18 Splunk Unspecified Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.18 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.18 CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

]]> 12.11.19 SquirrelMail Autocomplete Plugin Email Addresses Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.19 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.19 CVEs: CVE: CVE-2012-0323

Platform: Web Application - Cross Site Scripting

]]> 12.11.20 EJBCA "issuer" Parameter Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.20 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.20 CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

]]> 12.11.21 Synology Photo Station "photo_one.php" Script Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.21 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.21 CVEs: CVE: CVE-2012-1556

Platform: Web Application - Cross Site Scripting

]]> 12.11.22 Aurora WebOPAC "txtEmailAliasBarcode" Parameter SQL Injection http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.22 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.22 CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

]]> 12.11.1 Microsoft Remote Desktop Protocol Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.1 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.1 CVEs: CVE: CVE-2012-0002,CVE-2012-0152

Platform: Windows

]]> 12.11.2 Microsoft Windows DNS Server Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.2 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.2 CVEs: CVE: CVE-2012-0006

Platform: Windows

]]> 12.11.3 Microsoft Windows Kernel "Win32k.sys" Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.3 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.3 CVEs: CVE: CVE-2012-0157

Platform: Windows

]]> 12.11.4 Microsoft Windows "DirectWrite" API Denial of Service http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.4 http://www.sans.org/newsletters/risk/display.php?v=11&i=11&rss=Y#12.11.4 CVEs: CVE: CVE-2012-0156

Platform: Windows

]]>