Protecting Portable Devices: Data Security

Microsoft Internet Explorer Vulnerabilities

Microsoft Internet Explorer Vulnerabilities

Vulnerability Summary for the Week of January 11, 2010

Understanding Encryption

Adobe Reader and Acrobat Vulnerabilities

Adobe Reader and Acrobat Vulnerabilities

Microsoft Windows and Adobe Flash Player 6 Vulnerabilities

Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities

Oracle Updates for Multiple Vulnerabilities

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation of the vulnerability could allow an attacker to gain the same user rights as the local user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full ...

Eight vulnerabilities have been discovered in Microsofts web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these vulnerabilities. Successful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 6 Microsoft Internet ...

A vulnerability has been discovered in CiscoWorks Internetwork Performance Monitor (IPM) which could allow remote code execution. CiscoWorks IPM is a troubleshooting component used within the management solutions for CiscoWorks products which are used to configure, administer and monitor networks. Successful exploitation could result in an attacker gaining the same privileges as the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed attacks will likely cause denial-of-service conditions. SYSTEMS AFFECTED: CiscoWorks IPM 2.6 and earlier for Windows operating systems RISK: Government: ...

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation of the vulnerability could allow an attacker to gain the same user rights as the local user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full ...

A vulnerability has been discovered in Apple iTunes and Quick Time player. Apple iTunes and QuickTime are used to play media files on Microsoft Windows and MAC OS X platforms. This vulnerability can be exploited if a user views the malicious file on a webpage or opens a malicious file, including an email attachment, using a vulnerable version of Apple QuickTime Player or iTunes. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; ...

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation of the vulnerability could allow an attacker to gain the same user rights as the local user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with ...

A vulnerability discovered in the Adobe Acrobat and Adobe Reader applications could allow attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will likely cause denial-of-service conditions. It ...

Multiple vulnerabilities discovered in the Adobe Acrobat and Adobe Reader applications could allow attackers to execute arbitrary code on affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will likely cause denial-of-service conditions. SYSTEMS AFFECTED: ...

A vulnerability has been discovered in the Microsoft Windows Embedded OpenType Font Engine that could allow for remote code execution. Embedded OpenType Fonts are fonts that get embedded in documents such as Microsoft Word, Power Point, or Web pages. This vulnerability can be exploited if a user visits a specially crafted webpage or opens a specially crafted file, including e-mail attachments. Successful exploitation may result in an attacker gaining the same user privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create ...

A vulnerability has been discovered in Microsoft Internet Information Services (IIS) which is one of the most popular web servers in the world. This vulnerability exists on web sites where file upload is enabled. Successful exploitation could enable the attacker to bypass the file type filter and result in an attacker being able to upload a malicious file onto a vulnerable system. Depending on the privileges associated with the service, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. It should be noted that there is no patch available ...

A vulnerability discovered in the Adobe Acrobat and Adobe Reader applications could allow attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will likely cause denial-of-service conditions. It ...

Multiple vulnerabilities have been discovered in the Mozilla Firefox and Mozilla SeaMonkey applications which could allow remote code execution. Mozilla Firefox is a popular web browser used to access the Internet. Mozilla SeaMonkey is a cross platform Internet suite of tools ranging from a web browser to an email client. The Mozilla applications (Firefox and SeaMonkey) utilize the same framework to display application specific information (e.g. Web pages, emails, chats). Exploitation may occur if a user visits a webpage or opens a malicious file specifically crafted to take advantage of these vulnerabilities. Successful exploitation could result in an attacker ...

A vulnerability discovered in the Adobe Acrobat and Adobe Reader applications could allow attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will likely cause denial-of-service conditions. It ...

Recent SQL Injection attacks have underscored the continued prevalence of SQL injection attacks as a viable means of exploitation. The purpose of this bulletin is to focus attention on the basic methodology of SQL injection and how these attacks can be prevented. SQL injection is an attack in which malicious SQL code is inserted into application inputs (variables, text boxes, URL parameters, etc.) and are later passed to an instance of an SQL server for parsing and execution. RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and ...

Seven vulnerabilities have been discovered in Adobe Flash Player and Adobe AIR. Adobe Flash Player is a widely distributed multimedia and application player for Microsoft Windows, Mozilla, and Apple systems. It is used to enhance the user experience when visiting web pages or reading email messages. Adobe AIR allows users to develop web applications that will work outside of a web browser. These vulnerabilities can be exploited if a user visits a malicious website or opens an email attachment containing Flash media designed to exploit these vulnerabilities. Successful exploitation of six of these vulnerabilities could result in an ...

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed ...

Five vulnerabilities have been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 5 Microsoft ...

A vulnerability has been discovered in Microsoft Windows WordPad and the Office Text Converter for the Word 97 file format that could allow a remote attacker to take complete control of a vulnerable system. WordPad and the Office Text Converter are installed by default and allow some applications to open Word documents even if the software product, Microsoft Word, is not installed. This vulnerability can be exploited when a user opens a specially crafted Word 97 document using the affected versions of WordPad or Microsoft Office Word. Successful exploitation could result in an attacker gaining the same privileges as the ...

Two vulnerabilities have been discovered in Microsoft Internet Authentication Service (IAS) server. IAS is the Microsoft implementation of a Remote Authentication Dial-in User Service which performs authentication, authorization, and accounting for many types of network access, including wireless and virtual private network (VPN). Successful exploitation could result in an attacker gaining administrator privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed attacks may cause denial-of-service conditions. SYSTEMS AFFECTED: Windows Server 2000 Windows XP Windows Server 2003 Windows Vista Windows ...

Multiple vulnerabilities have been discovered in the BlackBerry Attachment Service. The BlackBerry Attachment Service is a component of BlackBerry Enterprise Server and BlackBerry Professional Software that is used to process email attachments. These vulnerabilities affect the Blackberry Enterprise Server; not the Blackberry handset. Successful exploitation may result in an attacker gaining complete control of the Blackberry Enterprise Server. Depending on the privileges associated with the service, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: BlackBerry ...

A vulnerability exists in the Transport Layer Security (TLS) protocol that could allow attackers to intercept secure communications from unsuspecting users. TLS is widely used to provide secure communication over the Internet. If successfully exploited, this could result in information disclosure or credential theft of the affected user. Please note: Proof of concept code has been published and is publically available. However, we have not received any reports of active exploitation of this vulnerability. ORIGINAL SYSTEMS AFFECTED: Apache Software Foundation Apache 2.2.8 Apache Software Foundation Apache 2.2.9 GNU GnuTLS 2.0.0 - 2.8.3 Microsoft IIS 7.0 Microsoft IIS 7.5 ...

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. ...

A vulnerability has been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. At this point in time, no patches are available for this vulnerability. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. ...

A vulnerability has been discovered in the way Microsoft Windows parses Embedded OpenType Font (EOT) which could allow for remote code execution. Embedded OpenType Fonts are fonts within Microsoft Windows that are used for designing web pages and documents. These vulnerabilities can be exploited if a user opens a specially crafted file or webpage, including opening an e-mail attachment. Successful exploitation may result in an attacker gaining the same user privileges as the logged on user. Depending on the privileges associated with this user, an attacker could then install programs; view, change, or delete data; or create new accounts. ...

Multiple vulnerabilities have been discovered in Microsoft Office Excel. These vulnerabilities can be exploited by opening a specially crafted Excel document. The document may be received as an email attachment, or by visiting a web site where the document is posted. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Office XP Microsoft Office 2003 Microsoft Office 2007 Microsoft Office ...

A vulnerability has been discovered in Microsoft Office Word. This vulnerability can be exploited by opening a specially crafted Word document. The document may be received as an email attachment, or by visiting a web site where the document is hosted. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service conditions. SYSTEMS AFFECTED: Microsoft Office XP Microsoft ...

A vulnerability exists in the Transport Layer Security (TLS) protocol that could allow attackers to intercept secure communications from unsuspecting users. TLS is widely used to provide secure communication over the Internet. If successfully exploited, this could result in information disclosure or credential theft of the affected user. Please note: Proof of concept code has been published and is publically available. However, we have not received any reports of active exploitation of this vulnerability. SYSTEMS AFFECTED: Apache Software Foundation Apache 2.2.8 Apache Software Foundation Apache 2.2.9 GNU GnuTLS 2.0.0 - 2.8.3 Microsoft IIS 7.0 Microsoft IIS ...

Multiple vulnerabilities have been discovered in the Sun Java Runtime Environment (JRE), Sun Java Development Kit (JDK) and Sun Development Kit (SDK) that could allow attackers to take complete control of a vulnerable system. Sun Java Runtime Environment, Sun Java Development Kit and the Sun Development Kit are used to enhance the user experience when visiting web sites and are installed on most desktops and servers. These vulnerabilities may be exploited if a user visits a specifically crafted web page, or opens a specially crafted file. Successful exploitation could result in an attacker gaining the same privileges as the ...

A vulnerability has been discovered in the BlackBerry Desktop Manager that could allow remote code execution. Research In Motion BlackBerry Desktop Manager is used to synchronize smart phones and desktop computers. Exploitation may occur if a user visits a specifically crafted web page which takes advantage of these vulnerabilities. Successful exploitation may result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service conditions. ...

Multiple vulnerabilities have been discovered in the Mozilla Firefox and Mozilla SeaMonkey applications which could allow remote code execution. Mozilla Firefox is a popular web browser used to access the Internet. Mozilla SeaMonkey is a cross platform Internet suite of tools ranging from a web browser to an email client. The Mozilla applications (Firefox and SeaMonkey) utilize the same framework to display application specific information (e.g. Web pages, emails, chats). Exploitation can occur if a user visits a webpage or opens a malicious file specifically crafted to take advantage of these vulnerabilities. Successful exploitation could result in an attacker ...

Three vulnerabilities have been discovered in the Microsoft .NET Framework, a widely used Microsoft software development platform, which could allow an attacker to take complete control of an affected system. The .NET Framework is widely installed as it is a prerequisite for many common applications. These vulnerabilities can be exploited if a user visits a malicious web page or uploads a specially crafted application to an affected web server. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; ...

Multiple vulnerabilities have been discovered in the Microsoft Graphics Device Interface (GDI+). Microsoft Windows Graphic Device Interface (GDI+) enables various applications to access devices which render images, such as desktop displays and printers, for the user. Please note: GDI+ is installed by default on all Microsoft Windows operating systems. This vulnerability can be exploited if a user views a malicious web page; views or previews a malicious email message; or opens an email attachment containing a specially crafted image file designed to exploit one of the vulnerabilities. Successful exploitation will result in an attacker gaining the same ...

Microsoft has released a security update which addresses vulnerabilities discovered in multiple ActiveX controls. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. There are more than 1,000 existing ActiveX controls available for use today. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation will result in ...

Three vulnerabilities have been discovered in Microsoft Office ActiveX controls that could allow an attacker to take complete control of an affected system or disclose information. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages or Windows applications which will typically enhance functionality and user experience. Exploitation may occur if a user visits a specifically crafted web page or opens a file which takes advantage of these vulnerabilities. Successful exploitation of two vulnerabilities could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with ...

Two vulnerabilities have been discovered in the Microsoft Windows Cryptographic Application Programming Interface (CryptoAPI). CryptoAPI provides a set of functions included with all Windows products that allows developers to secure Windows applications using cryptography. These vulnerabilities can be exploited to spoof the digital certificates of any web site or application that uses the vulnerable version of the CryptoAPI. Successful exploitation will grant an attacker the ability to spoof digital certificates from a trusted domain or perform man-in-the-middle attacks. The attacker would then be able to impersonate a trusted server and provide users with a false sense of security which could ...

A remote buffer overflow vulnerability has been discovered in Microsoft Internet Information Services (IIS) when using the File Transfer Protocol (FTP) server component. IIS is a set of Internet-based services running on Microsoft Windows servers. Successful exploitation could result in an attacker gaining the same privileges as the FTP service. Depending on the privileges associated, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. It should be noted that there is no patch available for this vulnerability and exploit code is available to the public. September 8 UPDATED ...

A vulnerability has been discovered in the Server Message Block 2 (SMB2) protocol that could allow a remote attacker to take complete control of a vulnerable system. SMB2 is used to provide shared access to files, printers, serial ports, and other miscellaneous communications between network devices. This vulnerability can be exploited by an attacker who sends a specially crafted SMB2 request to a vulnerable system. Successful exploitation of this vulnerability could result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full ...

Two vulnerabilities have been discovered in the Windows Media Format Runtime that could allow a remote attacker to take complete control of a vulnerable system. The Windows Media Format Runtime provides information to applications, such as Windows Media Player. These vulnerabilities can be exploited if a user visits a malicious web page or opens a malicious media file. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full ...

Four vulnerabilities have been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 5 Microsoft Internet Explorer ...

Multiple vulnerabilities were acknowledged by Adobe on October 8th, 2009. Patches for these vulnerabilities have been made available by Adobe on October 13th, 2009. Please note that there are reports of public exploits. SYSTEMS AFFECTED: Adobe Reader 9.1.3 Acrobat 9.1.3 Adobe Reader 8.1.6 Acrobat 8.1.6 for Windows, Macintosh & Unix Adobe Reader 7.1.3 Acrobat 7.1.3 for Windows & Macintosh RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small business entities: High Home users: High DESCRIPTION: Multiple vulnerabilities were acknowledged by Adobe on ...

A vulnerability has been discovered in Adobe Shockwave Player that could allow remote code execution. Adobe Shockwave Player is a widely used multimedia application used to display animations and video when visiting web sites. This vulnerability can be exploited by visiting a web page that contains a malicious Adobe Shockwave file. Successful exploitation may result in an attacker gaining the same privileges as the logged on user within the scope of the application. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with ...

Multiple vulnerabilities have been discovered in Apple QuickTime Player. Apple QuickTime Player is used to play media files on Microsoft Windows and Mac OS X operating systems. These vulnerabilities can be exploited if a user has a vulnerable version of Apple QuickTime Player and visits a malicious webpage or opens a malicious file, including an e-mail attachment. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full ...

A vulnerability has been discovered in the Server Message Block 2 (SMB2) protocol that could allow a remote attacker to take complete control of a vulnerable system. SMB2 is used to provide shared access to files, printers, serial ports, and other miscellaneous communications between network devices. This vulnerability can be exploited by an attacker who sends a specially crafted SMB2 request to a vulnerable system. Successful exploitation of this vulnerability could result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full ...

A remote buffer overflow vulnerability has been discovered in Microsoft Internet Information Services (IIS) when using the File Transfer Protocol (FTP) server component. IIS is a set of Internet-based services running on Microsoft Windows servers. Successful exploitation could result in an attacker gaining the same privileges as the FTP service. Depending on the privileges associated, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. It should be noted that there is no patch available for this vulnerability and exploit code is available to the public. September 8 - ...

A vulnerability exists in the way the Jscript scripting engine processes scripts within web pages. Jscript is a scripting language that is used to enhance the user experience when visiting web pages such as enabling animated content to be displayed. This vulnerability can be exploited if a user visits a specially crafted web page designed to exploit this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with ...

A vulnerability exists in Dynamic Hyper Text Markup Language (DHTML) Editing Component which may allow an attacker to take complete control of a system. DHTML allows for dynamic content to provide interactive web pages. This vulnerability can be exploited if a user visits a specially crafted web page designed to exploit this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: ...

Two vulnerabilities have been discovered in the Windows Media Format Runtime that could allow a remote attacker to take complete control of a vulnerable system. The Windows Media Format Runtime provides information to applications, such as Windows Media Player. These vulnerabilities can be exploited if a user visits a malicious web page or opens a malicious media file. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with ...

A remote buffer overflow vulnerability has been discovered in Microsoft Internet Information Services (IIS) when using the File Transfer Protocol (FTP) server component. IIS is a set of Internet-based services running on Microsoft Windows servers. Successful exploitation could result in an attacker gaining the same privileges as the FTP service. Depending on the privileges associated, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. It should be noted that there is no patch available for this vulnerability and exploit code is available to the public. SYSTEMS AFFECTED: ...

Multiple vulnerabilities have been discovered in the IBM WebSphere Application Server (WAS). IBM WebSphere Application Server (WAS) is a widely used server solution designed for delivering web-based applications and services over the Internet. WAS can be implemented on many common operating systems. These vulnerabilities may allow attackers to bypass authentication, cause denial-of-service or disclose sensitive information. Successful exploitation may allow malicious users to gain unauthorized access to the system, which may lead to other attacks. SYSTEMS AFFECTED: IBM WebSphere Application Server 6.1.0 IBM WebSphere Application Server 6.1.0 .1 IBM WebSphere Application Server 6.1.0 .14 IBM WebSphere Application Server ...

Lotus Notes is a collaborative software used for accessing e-mail, calendars and other applications. A new vulnerability has been discovered in the client side of this software which can be exploited if a user opens an email and views a malicious Microsoft Excel attachment. Successful exploitation may result in an attacker gaining the same user privileges as the logged on user. Depending on the privileges associated with this user account, an attacker could then install programs; view, change, or delete data; or create new accounts. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: IBM ...

Multiple vulnerabilities have been discovered in the Adobe ColdFusion and Adobe JRun applications. Adobe ColdFusion is an application development platform that allows organizations to create dynamically-generated web sites. Adobe JRun is an application server that is used for creating Java-based applications. Some of these vulnerabilities allow an attacker to modify the content of a web site. If a user subsequently visits a specifically crafted web page, or opens a specially crafted file, exploitation may occur. Successful exploitation of these vulnerabilities could allow an attacker to access private information or redirect an unsuspecting user to malicious content. Proof-of-concept code ...

A vulnerability has been discovered in the Windows Workstation Service which could allow attackers to execute arbitrary code on affected systems. The Windows Workstation Service is responsible for routing local file requests and remote file and print requests to the appropriate system. Successful exploitation of this vulnerability could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: Fully Vulnerable Microsoft Windows XP Service Pack 2 Microsoft Windows ...

A vulnerability has been discovered in the Microsoft Office Web Components Spreadsheet ActiveX control that could allow a remote attacker to take complete control of a vulnerable system. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation may ...

Two vulnerabilities have been discovered in the way Microsoft Windows processes specially crafted Audio Visual Interleave (AVI) files. AVI is a common multimedia file format, consisting of audio and video data as well as instructions for displaying this data. These vulnerabilities can be exploited by opening a malicious AVI file received as an email attachment, or by visiting a web site that is hosting the file. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or ...

Vulnerabilities have been discovered in Microsoft Active Template Library (ATL) that could allow an attacker to take complete control of an affected system. ATL is a set of pre-packaged programs that allow developers to create feature-rich applications. Exploitation may occur if a user visits a specifically crafted web page or opens a file which takes advantage of these vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with ...

Multiple vulnerabilities have been discovered in the Windows Internet Name Service (WINS). WINS is an essential core service that translates computer names to numeric addresses which are needed for computers to communicate with each other. Successful exploitation of these vulnerabilities could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. Failed exploitation attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: Windows 2000 Server Windows Server 2003 RISK: Government: Large and medium government entities: High Small government entities: ...

Vulnerabilities have been discovered in the Microsoft Remote Desktop Connection which could allow an attacker to take complete control of an affected system. The Microsoft Remote Desktop Connection is a client application which uses the Remote Desktop Protocol (RDP) to connect to a computer for remote access and is included by default with Microsoft Windows installations. Exploitation occurs if a user uses Microsoft Remote Desktop Connection to connect to a malicious RDP server, or if a user visits a specially crafted web page or opens a malicious e-mail attachment which is specifically crafted to take advantage of these vulnerabilities. ...

Multiple vulnerabilities have been discovered in the Sun Java Runtime Environment and the Sun Java Development Kit that could allow attackers to take complete control of a vulnerable system. Sun Java Runtime Environment and the Sun Java Development Kit are used to enhance the user experience when visiting web sites. These vulnerabilities may be exploited if a user visits a specifically crafted web page, or opens a specially crafted file. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then ...

Multiple vulnerabilities have been discovered in Mozilla applications. Mozilla provides various Internet applications such as web browsers (Firefox), email clients, and web development tools. These vulnerabilities could allow attackers to execute arbitrary code on affected systems. These vulnerabilities may be exploited if a user visits a specifically crafted web page, or opens a specially crafted file. Successful exploitation of four of these vulnerabilities could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then install programs; view, change, or delete data; or create ...

A vulnerability has been discovered in the Adobe Acrobat, Adobe Reader, and Adobe Flash Player applications that could allow attackers to execute arbitrary code on affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Adobe Flash Player is a multimedia and application player used to enhance the user experience when visiting web pages or reading email messages. Exploitation can occur if a user visits a malicious webpage or opens a malicious file designed to take advantage of this vulnerability, including opening ...

Vulnerabilities have been discovered in Microsoft Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 Service Pack 4 Microsoft Internet ...

Multiple vulnerabilities have been discovered in Mozilla Firefox, a popular web browser used to access the Internet. These vulnerabilities could allow attackers to execute arbitrary code on affected systems. These vulnerabilities may be exploited if a user visits a specifically crafted web page, or opens a specially crafted file. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then install programs; view, change, or delete data; or create new accounts with user level of logged on user. Failed exploit ...

A vulnerability has been discovered in the Adobe Acrobat, Adobe Reader, and Adobe Flash Player applications that could allow attackers to execute arbitrary code on affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Adobe Flash Player is a multimedia and application player used to enhance the user experience when visiting web pages or reading email messages. Exploitation can occur if a user visits a malicious webpage or opens a malicious file designed to take advantage of this vulnerability, including ...

A new vulnerability has been discovered in the Mozilla Firefox which could allow attackers to execute arbitrary code on affected systems. Mozilla Firefox is a web browser used to access the Internet. Exploitation can occur if a user visits a webpage designed to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in ...

A vulnerability has been discovered in Microsoft DirectX that could allow a remote attacker to take complete control of a vulnerable system. DirectX is an application within Microsoft Windows used to stream various types of media and enables graphics and sound when playing games or watching video. Successful exploitation could allow an attacker to gain the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Currently, there are no patches available for this vulnerability ...

A vulnerability has been discovered in Microsoft Video ActiveX control that could allow a remote attacker to take complete control of a vulnerable system. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation may result in an ...

A vulnerability has been discovered in the Microsoft Office Web Components Spreadsheet ActiveX control that could allow a remote attacker to take complete control of a vulnerable system. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation ...

A new vulnerability has been discovered in the Mozilla Firefox which could allow attackers to execute arbitrary code on affected systems. Mozilla Firefox is a web browser used to access the Internet. Exploitation can occur if a user visits a webpage designed to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a ...

Two vulnerabilities have been discovered in the Microsoft Windows Embedded OpenType Font Engine that could allow for remote code execution. Embedded OpenType Fonts are fonts within Microsoft Windows that are used for designing web pages. These vulnerabilities can be exploited if a user visits a malicious webpage or opens a malicious file, including opening an e-mail attachment. Successful exploitation may result in an attacker gaining the same user privileges as the logged on user. Depending on the privileges associated with this user account, an attacker could then install programs; view, change, or delete data; or create new accounts. SYSTEMS ...

A vulnerability has been discovered in the Microsoft Office Web Components Spreadsheet ActiveX control that could allow a remote attacker to take complete control of a vulnerable system. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation ...

A vulnerability has been identified in FCKEditor that could allow for remote code execution. FCKEditor is a standalone HTML text editor application that may be bundled with other commonly used applications. This vulnerability can be exploited by using the 'connector.php' script to upload content to the hosting webserver. Successful exploitation may result in an attacker gaining the same privileges as the webserver process. Depending on the privileges associated with the webserver process, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service conditions. It ...

Two vulnerabilities in IBM WebSphere Application Server have recently been made public. IBM WebSphere Application Server is a software application server that uses web technologies and can be implemented on many common operating systems. Both vulnerabilities may allow malicious users to bypass authentication required to access a service running on the vulnerable server. Successful exploitation may allow attackers to gain unauthorized access to the service, which may lead to other attacks. SYSTEMS AFFECTED: The vulnerability identified by IBM in PK72138 (Bugtraq ID 35594): IBM WebSphere Application Server 7.0 1 IBM WebSphere Application Server 6.1 23 IBM WebSphere ...

A vulnerability has been identified in FCKEditor that could allow for remote code execution. FCKEditor is a standalone HTML text editor application that may be bundled with other commonly used applications. This vulnerability can be exploited by using the 'connector.php' script to upload content to the hosting webserver. Successful exploitation may result in an attacker gaining the same privileges as the webserver process. Depending on the privileges associated with the webserver process, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service conditions. ...

A vulnerability has been discovered in Microsoft Video ActiveX control that could allow a remote attacker to take complete control of a vulnerable system. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation may result in an attacker ...

A vulnerability has been identified in Adobe Shockwave Player that could allow remote code execution. Adobe Shockwave Player is a widely distributed multimedia playback application. This vulnerability can be exploited by visiting a web page or by opening an email attachment that contains a malicious Adobe Director file (.dcr files). Successful exploitation may result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service ...

Multiple vulnerabilities have been discovered in the Mozilla Firefox, SeaMonkey, and Thunderbird applications which could allow remote code execution. The Mozilla Firefox and Thunderbird applications are used to browse the web, and handle email respectively. SeaMonkey is a cross platform Internet suite of tools ranging from a web browser to an email client. The Mozilla suite of applications (Firefox, SeaMonkey, and Thunderbird) utilize the same framework to display application specific information (e.g. HTML pages, emails, IRC chats). Exploitation can occur if a user visits a webpage or opens a malicious file specifically crafted to take advantage of these ...

Two vulnerabilities have been discovered in Microsoft Office Word. These vulnerabilities can be exploited by opening a malicious Word document received as an email attachment, or by visiting a web site that is hosting a malicious Word document. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploitation could result in denial-of-service conditions. SYSTEMS AFFECTED: Microsoft Office 2000 Microsoft Office XP ...

A new vulnerability has been discovered in Microsoft Office Excel, a spreadsheet-application written and distributed by Microsoft. This vulnerability can be exploited by opening a malicious Excel spreadsheet (.XLS) via email attachment, or by visiting a web site that is hosting a malicious Excel spreadsheet. Successful exploitation will result in the execution of arbitrary code with the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are confirmed reports that this vulnerability ...

Microsoft IIS is a web server that is implemented on Microsoft Windows servers. Multiple authentication bypass vulnerabilities have been discovered in Microsoft Internet Information Services (IIS) when using WebDAV which could allow for privilege escalation. WebDAV (Web Distributing Authoring Versioning) is an option in Microsoft IIS that allows users to upload, modify, and manage files located on a web server. Upon successful exploitation of these vulnerabilities, an attacker may be able to obtain, modify, or upload files without supplying credentials to the affected IIS server. Currently, there is no patch for these vulnerabilities. UPDATED OVERVIEW: Microsoft has released ...

Eight vulnerabilities have been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 Service Pack 4 ...

Two vulnerabilities have been discovered in Active Directory. Active Directory is a Microsoft technology that enables authentication and access to resources on a network. These vulnerabilities may be exploited by a specially crafted request targeting a vulnerable server running Active Directory. The most severe vulnerability could allow an attacker to remotely execute arbitrary code. Successful exploitation could result in an attacker gaining complete control of the affected system and could lead to the compromise of any other system that is part of the affected domain. An attacker could then install programs; view, change, or delete data; or create new ...

Multiple vulnerabilities have been discovered in Apple QuickTime Player. Apple QuickTime Player is used to play media files on Microsoft Windows and Mac OS X operating systems. These vulnerabilities can be exploited if a user visits a malicious webpage or opens a malicious file, including an e-mail attachment, using a vulnerable version of Apple QuickTime Player. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. ...

A vulnerability has been discovered in Microsoft DirectX that could allow a remote attacker to take complete control of a vulnerable system. DirectX is an application within Microsoft Windows used to stream various types of media and enables graphics and sound when playing games or watching video. Successful exploitation could allow an attacker to gain the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Currently, there are no patches available for this vulnerability ...

Multiple vulnerabilities have been discovered in the BlackBerry Attachment Service. The BlackBerry Attachment Service is a component of BlackBerry Enterprise Server and BlackBerry Professional Software that is used to process email attachments. The vulnerabilities affects the Blackberry Enterprise Server; not the Blackberry handset. Successful exploitation may result in an attacker gaining complete control of the Blackberry Enterprise Server. Depending on the privileges associated with the service, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: ...

Novell GroupWise is a collaborative software product which includes email, calendars, instant messaging and document management. Multiple vulnerabilities have been discovered in Novell GroupWise Internet Agent. The GroupWise Internet Agent (GWIA) is a server component which provides communication to other email systems and conversion of email messages to GroupWise format. Successful exploitation could allow an attacker to gain SYSTEM-level privileges. An attacker could then install programs; view, change, or delete data; or create new accounts. Unsuccessful exploitation attempts may result in a denial of service. SYSTEMS AFFECTED: GroupWise Internet Agent GroupWise 7.0 up to (and including) 7.03 ...

Novell GroupWise is a collaborative software product which includes email, calendars, instant messaging and document management. Multiple vulnerabilities have been discovered in Novell GroupWise WebAccess. GroupWise WebAccess provides remote access to a Novell GroupWise system. Successful exploitation of two of the vulnerabilities could allow an attacker to gain unauthorized access to an authenticated user's account. Successful exploitation of the other vulnerabilities could allow an attacker to leverage other attacks. SYSTEMS AFFECTED: GroupWise Internet Agent GroupWise 7.0 up to (and including) 7.03 HP2 GroupWise 8.0 up to (and including) 8.0.0 HP1 RISK: Government: ...

Microsoft IIS is a web server that is implemented on Microsoft Windows servers. Multiple authentication bypass vulnerabilities have been discovered in Microsoft Internet Information Services (IIS) when using WebDAV which could allow for privilege escalation. WebDAV (Web Distributing Authoring Versioning) is an option in Microsoft IIS that allows users to upload, modify, and manage files located on a web server. Upon successful exploitation of these vulnerabilities, an attacker may be able to obtain, modify, or upload files without supplying credentials to the affected IIS server. Currently, there is no patch for these vulnerabilities. SYSTEMS AFFECTED: ...

Multiple vulnerabilities have been discovered in Oracle Outside In. Outside In is a tool which is used to manipulate a large variety of document formats, including Microsoft Office documents. The Outside In conversion engine, although owned by Oracle, is implemented in a large number of third party software packages. This vulnerability can be exploited by opening a specially crafted document file received as an email attachment. Successful exploitation could allow an attacker to gain the same user privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, ...

Multiple vulnerabilities have been discovered in the Java Runtime Environment (JRE). Sun Java Runtime Environment includes an ActiveX control used to download and execute Java applications. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. The identified vulnerabilities may be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. Depending on the privileges associated with this user account, an attacker could then install programs; view, change, or ...

Multiple vulnerabilities have been discovered in the Adobe Reader and Adobe Acrobat applications that could allow attackers to execute arbitrary code on affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Recently there have been multiple vulnerabilities and related updates announced by Adobe. Depending on the privileges associated with the user, an attacker could exploit these vulnerabilities to install programs; view, change, or delete data; or create new accounts with full user rights. Unsuccessful exploitation attempts may cause these programs to ...

A new vulnerability has been discovered in Microsoft PowerPoint, a slide presentation program. This vulnerability can be exploited by opening a malicious PowerPoint presentation (.PPT or .PPS file) received as an email attachment, or by visiting a web site that is hosting a malicious PowerPoint file. Successful exploitation could allow an attacker to gain the same user privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are confirmed reports that this vulnerability is ...

Multiple vulnerabilities have been identified within various Symantec security products which could allow a remote attacker to take complete control of an affected system without any user interaction. Symantec's suite of security products includes network devices and consumer software that are used by both enterprise and home level users. It should be noted that exploit code is not publicly available for any of these vulnerabilities. UPDATED OVERVIEW: Exploit code is now publicly available. SYSTEMS AFFECTED: Symantec AntiVirus Corporate Edition 9.0 MR6 and earlier Symantec AntiVirus Corporate Edition 10.0 Symantec AntiVirus Corporate Edition 10.1 MR7 and earlier ...

Three vulnerabilities have been discovered in Microsoft XML Core Services (MSXML). This is a set of services which is installed by default on all Windows systems, and is used to enhance the user experience on web pages. The identified vulnerabilities may be exploited if a user visits a specifically crafted web page or opens a specially crafted HTML formatted email which could allow an attacker to take complete control of an affected system. For one of the vulnerabilities, successful exploits will result in an attacker gaining the same privileges as the logged on user. If the user is logged ...

Multiple vulnerabilities have been identified within various Symantec security products which could allow a remote attacker to take complete control of an affected system without any user interaction. Symantec's suite of security products includes network devices and consumer software that are used by both enterprise and home level users. It should be noted that exploit code is not publicly available for any of these vulnerabilities. SYSTEMS AFFECTED: Symantec AntiVirus Corporate Edition 9.0 MR6 and earlier Symantec AntiVirus Corporate Edition 10.0 Symantec AntiVirus Corporate Edition 10.1 MR7 and earlier Symantec AntiVirus Corporate Edition 10.2 MR1 and earlier Symantec ...

Four vulnerabilities have been discovered in Microsoft Windows which could allow for privilege escalation. This issue affects applications that allow untrusted code to be executed in a trusted environment. An attacker may be able to leverage these vulnerabilities through a vulnerable web application. Utilizing these vulnerabilities, an attacker could execute arbitrary code in the context of SYSTEM and take full control of the affected machine. An attacker could then install programs; view, change, or delete data; or create new accounts with full system rights. SYSTEMS AFFECTED: Windows 2000 SP4 Windows XP SP2, SP3 Windows XP Professional x64 Edition ...

A new vulnerability has been discovered in the Microsoft Windows WordPad Text Converter for the Word 97 file format that would allow a remote attacker to take complete control of the vulnerable system. The WordPad Text Converter is a component that is installed by default that allows some applications to open Word documents if Word is not installed. This vulnerability can be exploited when a user opens a specially crafted Word 97 file using WordPad. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could ...

A new vulnerability has been discovered in Microsoft Office Excel, a spreadsheet-application written and distributed by Microsoft. This vulnerability can be exploited by opening a malicious Excel spreadsheet (.XLS) via email attachment, or by visiting a web site that is hosting a malicious Excel spreadsheet. Successful exploitation will result in the execution of arbitrary code with the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are confirmed reports that this vulnerability ...

Six vulnerabilities have been discovered in Microsoft's web browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 Service Pack 4 ...

A vulnerability has been discovered in Microsoft DirectShow that could allow a remote attacker to take complete control of a vulnerable system. DirectShow is a component of Windows that enables applications to capture and play back a wide variety of audio/video inputs and formats. This vulnerability can be exploited when a user opens a specially crafted media file. Successful exploitation could allow an attacker to gain the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full ...

Multiple vulnerabilities have been discovered in the Windows HTTP Services (WinHTTP) that would allow a remote attacker to take complete control of a vulnerable system. WinHTTP is a component of Windows that enables client applications to send requests to web servers. This vulnerability can be exploited when a user or application visits a malicious web page. Successful exploitation may result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete files; or create new accounts with user rights. SYSTEMS AFFECTED: Windows 2000 SP4 Windows XP SP2, SP3 ...

Multiple vulnerabilities have been discovered in Cisco PIX firewalls and ASA devices which are network security solutions that can be implemented to block malicious traffic. These vulnerabilities could allow attackers to gain unauthorized access to vulnerable systems, cause these devices to reload, or submit network traffic which bypasses restrictions that allow or deny access to network resources. SYSTEMS AFFECTED: Cisco PIX/ASA 7.0 Cisco PIX/ASA 7.1 Cisco PIX/ASA 7.2 Cisco PIX/ASA 8.0 Cisco PIX/ASA 8.1 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small ...

Multiple vulnerabilities have been discovered in several VMware (virtual machine) products that could allow an attacker to gain unauthorized access or take complete control of a vulnerable system. VMware is used to create and run multiple virtual operating systems on a computer. More and more entities are utilizing virtual machines to minimize costs. Depending on the privileges associated with the logged in user or specialized processes, an attacker could exploit these vulnerabilities to install programs; view, change, or delete data; create new accounts with full user rights; or communicate with other systems. Unsuccessful exploitation attempts may cause a denial-of-service ...

A new vulnerability has been discovered in Microsoft PowerPoint, a slide presentation program. This vulnerability can be exploited by opening a malicious PowerPoint presentation (.PPT or .PPS file) received as an email attachment, or by visiting a web site that is hosting a malicious PowerPoint file. Successful exploitation could allow an attacker to gain the same user privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are confirmed reports that this vulnerability is ...

A new vulnerability has been discovered in the Mozilla Firefox web browser which could allow attackers to execute arbitrary code on affected systems. Mozilla Firefox is a web browser used to access the Internet. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user account, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may ...

New vulnerabilities have been reported in the Adobe Acrobat and Adobe Reader applications that allow attackers to execute arbitrary code on affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Recently there have been multiple vulnerabilities and related updates announced by Adobe. The newly announced vulnerabilities in this advisory are addressed by applying the updates described in our recent advisory and associated updates (2009-008) and the related Adobe announcement. Depending on the privileges associated with the user, an attacker ...

Sixteen vulnerabilities have been discovered in the Java JDK (Java Development Kit), SDK (Software Development Kit), and JRE (Java Runtime Environment) applications that could allow attackers to take complete control of a vulnerable system. Sun JRE allows a user to run Java applications, including web programs called applets which are in use on many common websites. Both the JDK and the SDK allow for the development of Java Applications and applets. Four vulnerabilities may result in denial of service conditions, seven vulnerabilities may result in privilege-escalation issues, two vulnerabilities may create a situation where unauthorized connections may ...

A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Unsuccessful exploitation attempts may cause these programs to crash. It should be noted that this vulnerability is being actively exploited on ...

A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Unsuccessful exploitation attempts may cause these programs to crash. It should be noted that this vulnerability is being actively exploited on the Internet. ...

A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Unsuccessful exploitation attempts may cause these programs to crash. It should be noted that this vulnerability is being actively exploited on ...

Multiple vulnerabilities have been discovered in Windows Domain Name System (DNS) and Windows Internet Name Service (WINS). DNS and WINS are essential core services that translate names, such as a web sites, email addresses or computer names, to numeric addresses which are needed for computers to communicate. Successful exploitation could result in an attacker redirecting Internet traffic to malicious sites without the user's knowledge. SYSTEMS AFFECTED: Windows 2000 Server SP4 Windows Server 2003 Windows Server 2008 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High ...

Three vulnerabilities have been discovered in Microsoft Windows which could allow an attacker to take complete control of a vulnerable system. These vulnerabilities can be exploited if a user opens a specially crafted image file or previews it in windows explorer; views or previews an email or visits a website with a specially crafted image file embedded; or runs a specially crafted application. Successful exploitation will result in an attacker gaining system-level privileges. This will allow the attacker to then install programs; view, change, or delete data; or create new accounts with administrative privileges. SYSTEMS AFFECTED: Windows ...

Multiple security vulnerabilities have been identified in Adobe Flash Player. Adobe Flash Player is a widely distributed multimedia and application player for Microsoft Windows, Mozilla, and Apple systems. It is used to enhance the user experience when visiting web pages or reading email messages. These vulnerabilities can be exploited if a user visits a malicious website or opens an email containing Flash media designed to exploit these vulnerabilities. Successful exploitation of one of these vulnerabilities may result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an ...

A new vulnerability has been discovered in Microsoft Office Excel, a spreadsheet-application written and distributed by Microsoft. This vulnerability can be exploited by opening a malicious Excel spreadsheet (.XLS) via email attachment, or by visiting a web site that is hosting a malicious Excel spreadsheet. Successful exploitation will result in the execution of arbitrary code with the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are confirmed reports that this vulnerability is ...

A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Unsuccessful exploitation attempts may cause these programs to crash. It should be noted that this vulnerability is being actively exploited on ...

Two vulnerabilities have been discovered in Microsoft's browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. ...

Microsoft has released a security update which addresses vulnerabilities discovered in multiple ActiveX controls. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. There are more than 1,000 existing ActiveX controls available for use today. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation ...

A vulnerability has been discovered in Microsoft SQL Server. Successful exploitation will result in an attacker gaining the same privileges as the MS SQL Server process. The attacker could then potentially access sensitive or confidential information, install programs, view, change, or delete data, or create new accounts. There is no patch available at this time. December 26 UPDATED OVERVIEW: There are currently no reports of activeexploits. However, proof of concept code for this vulnerability has been publicly released and verified in our lab. There is still no patch available at this time. February 10 UPDATED OVERVIEW: Microsoft has released ...

Two vulnerabilities have been discovered in Microsoft's browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. ...

Two vulnerabilities have been found in Microsoft Exchange Server (Microsoft's mail server) which could allow an attacker to take complete control of a vulnerable system or cause a Denial of Service (DoS) condition. Successful exploitation of the first vulnerability could result in an attacker gaining the same privileges as the Exchange server service account. Depending on the privileges associated with this service account, an attacker could then install programs; view, change, or delete data; or create new accounts. Successful exploitation of the second vulnerability could result in a Denial of Service condition. SYSTEMS AFFECTED: ...

Multiple vulnerabilities have been discovered in Novell GroupWise. GroupWise is Novell's email system. If successfully exploited, these vulnerabilities may allow an attacker to steal sensitive information, compromise email credentials, or execute arbitrary code. Depending on the associated privileges, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: GroupWise 6.5x GroupWise 7.0 GroupWise 7.01 GroupWise 7.02x GroupWise 7.03x GroupWise 8.0 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: ...

Multiple vulnerabilities have been discovered in Apple QuickTime. Apple QuickTime is used to play media files on Microsoft Windows and Mac OS X operating systems. These vulnerabilities can be exploited if a user visits a malicious webpage or opens a malicious e-mail attachment using a vulnerable version of QuickTime. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: All versions of ...

A vulnerability has been identified in the BlackBerry Attachment Service. BlackBerry Attachment Service is a component of "BlackBerry Enterprise Server" and "BlackBerry Unite!" that is used to process email attachments. Exploitation occurs when specially crafted PDF files are opened or viewed on the Blackberry handset and processed by the Blackberry Attachment Service. This affects the Blackberry Enterprise Server or Blackberry Unite!, and not the Blackberry handset. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the service, an attacker could then install programs; view, change, or delete data; ...

Three remote code execution vulnerabilities exist in the Microsoft Server Message Block (SMB) Protocol. SMB is used mainly to provide shared access to files, printers, serial ports and miscellaneous communications between computers on a local network. Exploitation of these vulnerabilities does not require authentication. Successful exploitation of two of these vulnerabilities could result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Successful exploitation of the third vulnerability could result in a Denial of Service (DoS). Microsoft has released ...

A vulnerability has been identified in Microsoft Windows Media Player. Windows Media Player is a digital media player and media library application that is used for playing audio, video, and viewing images. This application is installed by default on all versions of Windows and is often set as the default media player. Exploitation can occur if a user visits a specially crafted webpage or opens a malicious media file which takes advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. The attacker could then potentially access sensitive or confidential ...

A vulnerability has been identified in Microsoft Windows Media Player. Windows Media Player is a digital media player and media library application that is used for playing audio, video, and viewing images. This application is installed by default on all versions of Windows and is often set as the default media player. Exploitation can occur if a user visits a specially crafted webpage or opens a malicious media file which takes advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. The attacker could then potentially access sensitive or confidential ...

A vulnerability has been discovered in Microsoft SQL Server. Successful exploitation will result in an attacker gaining the same privileges as the MS SQL Server process. The attacker could then potentially access sensitive or confidential information, install programs, view, change, or delete data, or create new accounts. There is no patch available at this time. UPDATED OVERVIEW: There are currently no reports of active exploits. However, proof of concept code for this vulnerability has been publicly released and verified in our lab. There is still no patch available at this time. ORIGINAL SYSTEMS AFFECTED: Microsoft SQL Server ...

A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be noted that this ...

A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be noted that this ...

Eight vulnerabilities have been discovered in Microsoft Office Word. These vulnerabilities can be exploited if a user opens a specially crafted document in Rich Text Format (RTF) or Word file, or views or previews a specially crafted email sent in RTF format on a system where Word is the default editor. It should be noted that Word is the default email editor for Microsoft Office. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, the attacker could then install programs; view, change, or delete ...

A new vulnerability has been discovered in the Microsoft Windows WordPad Text Converter for the Word 97 file format that would allow a remote attacker to take complete control of the vulnerable system. The WordPad Text Converter is a component that is installed by default that allows some applications to open Word documents if Word is not installed. This vulnerability can be exploited when a user opens a specially crafted Word 97 file using WordPad. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker ...

A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be noted that this ...

A vulnerability has been discovered in Microsoft SQL Server. Successful exploitation will result in an attacker gaining the same privileges as the MS SQL Server process. The attacker could then potentially access sensitive or confidential information, install programs, view, change, or delete data, or create new accounts. There is no patch available at this time. SYSTEMS AFFECTED: Microsoft SQL Server 2000 Microsoft SQL Server 2005 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small business entities: High Home users: Low DESCRIPTION: Microsoft SQL Server 2000 ...

Four vulnerabilities have been discovered in Microsoft's browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS ...

Two vulnerabilities have been discovered in the Microsoft Graphics Device Interface (GDI). Microsoft Windows Graphic Device Interface (GDI) enables various applications to access devices which render images, such as desktop displays and printers, for the user. GDI is installed by default on all Microsoft Windows operating systems. These vulnerabilities can be exploited if a user views a malicious web page; views or previews an email message; or opens an email attachment containing a specially crafted image file designed to exploit one of the vulnerabilities. Successful exploitation will result in an attacker gaining the same privileges as the logged ...

Six vulnerabilities have been discovered in the ActiveX controls for the Microsoft Visual Basic 6.0 Runtime Extended Files. The Visual Basic 6.0 Runtime Extended Files include select ActiveX controls, libraries, and tools that are delivered with a variety of Microsoft products, such as Microsoft Project, Visual Studio, FoxPro, and FrontPage, as well as third party and custom written software. The identified vulnerabilities may be exploited if a user visits a specially crafted web page or opens a specially crafted HTML formatted email, which could allow an attacker to take complete control of an affected system. For all of ...

Multiple vulnerabilities have been discovered in the Sun Java Web Start and Java Plug-in that could allow a remote attacker to take control of a vulnerable system. Sun Java Web Start is a tool in the Java Runtime Environment (JRE) common to virtually all desktop environments. JRE allows java applications to launch either from a desktop or within a web page. These vulnerabilities can be exploited when a user visits a web site that contains a malicious script code. Successful exploitation may allow attackers to access sensitive information, bypass security restrictions, or read, write and execute arbitrary files with the ...

Three vulnerabilities have been discovered in Microsoft XML Core Services (MSXML). This is a set of services which is installed by default on all Windows systems, and is used to enhance the user experience on web pages. The identified vulnerabilities may be exploited if a user visits a specifically crafted web page or opens a specially crafted HTML formatted email which could allow an attacker to take complete control of an affected system. For one of the vulnerabilities, successful exploits will result in an attacker gaining the same privileges as the logged on user. If the user is logged ...

Several security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. These vulnerabilities can be exploited if a user opens a malicious PDF file. Successful exploitation will result in an attacker gaining complete control of the affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. UPDATED OVERVIEW: It has been reported that one of the vulnerabilities is actively being exploited on the Internet. ...

Several security vulnerabilities have been identified in Adobe Flash Player. Adobe Flash Player is a widely distributed multimedia and application player for Microsoft Windows, Mozilla, and Apple technologies. It is used to enhance the user experience when visiting web pages or reading email messages. These vulnerabilities can be exploited if a user views a malicious webpage or opens a malicious Shockwave Flash (SWF) or Java Archive (JAR) file. Successful exploitation may result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then install programs; ...

Several security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. These vulnerabilities can be exploited if a user opens a malicious PDF file. Successful exploitation will result in an attacker gaining complete control of the affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Adobe Acrobat Reader 8.1.2 and earlier Adobe Acrobat Standard/Professional/3D 8.1.2 and earlier RISK: ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server Service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted Remote Procedure Call (RPC) request over the Internet or an internal network. RPC is a protocol that a program can use to request a service from a program located on another computer in a network. Successful ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server Service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted Remote Procedure Call (RPC) request over the Internet or an internal network. RPC is a protocol that a program can use to request a service from a program located on another computer in a network. Successful ...

A vulnerability has been identified in Active Directory that could allow an attacker to remotely execute arbitrary code. Active Directory is a Microsoft technology that enables authentication (logging on) and access to resources (directories) on a network. This vulnerability may be exploited by a specially crafted request targeting a vulnerable Windows 2000 Server Domain Controller. Successful exploitation will result in an attacker gaining complete control of the affected system and could lead to the compromise of any other system that is part of the affected domain. An attacker could then install programs; view, change, or delete data; or create ...

A remote code execution vulnerability exists in the Microsoft Server Message Block (SMB) Protocol. SMB is used mainly to provide shared access to files, printers, serial ports and miscellaneous communications between computers on a network. Successful exploitation will result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Windows 2000 Windows XP Windows 2003 Windows Vista Windows 2008 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: ...

Six vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities may be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: Internet Explorer 5.01 Internet Explorer ...

Five vulnerabilities have been discovered in the Microsoft Graphics Device Interface (GDI+), which is found in all Windows operating systems. This could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit one of the vulnerabilities. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged on with administrator privileges, the attacker could then install programs; view, change, or delete data; ...

A vulnerability has been discovered in Microsoft Word that may allow an attacker to remotely execute arbitrary code in the context of the user. The vulnerability can be exploited using a specially crafted Word document that causes a memory handling error. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. This vulnerability is reportedly being actively exploited on the Internet. SYSTEMS AFFECTED: ...

A new vulnerability has been discovered in the Microsoft Access Snapshot Viewer ActiveX Control. The Snapshot Viewer enables you to view a report generated with a database product, Microsoft Access, without requiring the product to be installed on the user's computer. Microsoft Access Snapshot Viewer is included with most installations of Microsoft Office. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. The vulnerability can be exploited through a specially crafted web page that uses the vulnerable ActiveX control. Successful exploitation will result in an attacker ...

Six vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities may be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 Microsoft Internet ...

A vulnerability has been discovered in the way Microsoft Windows handles images. This vulnerability can be exploited if a user views a malicious image file. The primary vectors for making malicious image content available include web pages, as well as email, instant messaging (IM), and documents. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges.   SYSTEMS AFFECTED: Windows 2000 SP4 Windows ...

Domain Name System (DNS) is an essential core service that translates a name, such as a web site or email address, to a numeric address which is needed for computers to communicate. Two vulnerabilities have been discovered in multiple vendors' DNS implementations that may allow an attacker to redirect users, without their knowledge, from trusted web sites to a malicious web site. Affected vendors include Microsoft, Cisco, Juniper, and Internet Systems Consortium (ISC). Be advised that this may not be a complete list. UPDATED OVERVIEW: Technical details about how to exploit these vulnerabilities have been publically ...

A new vulnerability has been discovered in the Microsoft Access Snapshot Viewer ActiveX Control. The Snapshot Viewer enables you to view a report generated with a database product, Microsoft Access, without requiring the product to be installed on the user's computer. Microsoft Access Snapshot Viewer is included with most installations of Microsoft Office. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. The vulnerability can be exploited through a specially crafted web page that uses the vulnerable ActiveX control. Successful exploitation will result in an attacker ...

Domain Name System (DNS) is an essential core service that translates a name, such as a web site or email address, to a numeric address which is needed for computers to communicate. Two vulnerabilities have been discovered in multiple vendors' DNS implementations that may allow an attacker to redirect users, without their knowledge, from trusted web sites to a malicious web site. Affected vendors include Microsoft, Cisco, Juniper, and Internet Systems Consortium (ISC). Be advised that this may not be a complete list. SYSTEMS AFFECTED: Microsoft Windows 2000 Server SP4 Microsoft XP Service Pack 2 Microsoft XP ...

A new vulnerability has been identified in Novell eDirectory that allows attackers to execute arbitrary code on affected systems. Novell eDirectory is an identity management and directory service application. Novell eDirectory, generally found in medium to large organizations, is commonly deployed as an internal directory and resource manager. eDirectory was formerly known as Novell Directory Services (NDS). If successfully exploited, this vulnerability could allow an attacker to take control of an affected system with the same privileges as the eDirectory process. This would typically allow the attacker to install programs, view, change, or delete data, or create new ...

A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. If successfully exploited, this vulnerability could allow an attacker to take complete control of an affected system resulting in the attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, ...

Two vulnerabilities have been discovered in Microsoft Internet Explorer. These vulnerabilities may be exploited if a user visits a web site specifically designed to exploit these vulnerabilities or by visiting a trusted web site unwittingly hosting malicious content. If successfully exploited, these vulnerabilities could allow an attacker to take complete control of an affected system resulting in the attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result ...

Two vulnerabilities have been discovered in Microsoft DirectX which could allow a remote attacker to take complete control of an affected system. DirectX is Microsoft software that adds enhanced multimedia functionality. These vulnerabilities can be exploited if a user opens an email attachment containing a malicious media file or visits a web site hosting malicious media files. Successful exploitation of these vulnerabilities will allow an attacker to gain the same rights as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts ...

IBM Lotus Domino is a web server application used to host web sites. A vulnerability has been discovered in the IBM Lotus Domino Web Server that could allow a remote attacker to take complete control of the system. Successful exploitation of this vulnerability will allow an attacker to inject malicious code into the application, thereby allowing the attacker to take control of a vulnerable system and perform actions such as install programs, view, change, and delete data, and create user accounts. Failed exploits could lead to a denial of service condition. SYSTEMS AFFECTED: IBM Lotus Domino 6.0.0 IBM ...

A vulnerability has been discovered in the Microsoft Jet Database Engine that could allow a remote attacker to take complete control of an affected system. Please note that this vulnerability is being actively exploited. The Microsoft Jet Database Engine allows programs to access information in a Microsoft database. This vulnerability can be exploited if a user opens a malicious Word file. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. If the ...

Two new vulnerabilities have been discovered in Microsoft Word which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by viewing or previewing malicious Rich Text Format (RTF) email messages or opening Word file attachments. RTF email messages usually contain special formatting, colors and font. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. SYSTEMS AFFECTED: ...

A vulnerability in the Novell GroupWise System (Novell's Email system) has been identified. Successful exploitation of this vulnerability will allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This could lead to complete control of the compromised system. UPDATED OVERVIEW: Novell has confirmed that this vulnerability only affects GroupWise 7.0.0. GroupWise 7.0.0 ...

A vulnerability in the Novell GroupWise System (Novell's Email system) has been identified. Successful exploitation of this vulnerability will allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This could lead to complete control of the compromised system. SYSTEMS AFFECTED: Novell Groupwise 7.0.0 Novell Groupwise 7.0.0 SP1 Novell Groupwise 7.0.0 SP2 ...

A vulnerability has been discovered in the way Microsoft Windows processes certain image files. This vulnerability can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit this vulnerability. This vulnerability may be exploited through other software applications which use the vulnerable Microsoft component. A successful exploit may result in the attacker taking complete control of the affected system. UPDATED OVERVIEW: Symantec DeepSight Threat Management System has reported that this vulnerability is being actively exploited on the Internet. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack ...

Adobe Flash Player is a widely distributed multimedia and application player. It is used to enhance the user experience when visiting web pages or reading email messages. Adobe has released a Flash Player update that addresses multiple vulnerabilities. The most important of these vulnerabilities pertains to the way Flash files are handled and can result in the execution of attacker supplied code. This particular vulnerability can be exploited if a user visits a webpage or opens email with an embedded malicious file. A successful exploit may result in the execution of malicious code with the same system level privileges as ...

Microsoft has released a security update which addresses a vulnerability discovered in one Microsoft ActiveX control. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. There are more than 1,000 existing ActiveX controls available for use today. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation will result ...

A vulnerability has been discovered in the way Microsoft Windows processes certain image files. This vulnerability can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit this vulnerability. This vulnerability may be exploited through other software applications which use the vulnerable Microsoft component. A successful exploit may result in the attacker taking complete control of the affected system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows XP Professional x64 Edition ...

To enhance the user experience when visiting web sites, web pages may use applications developed with a programming language called VBScript or JScript. A vulnerability exists in the way VBScript and JScript render web pages which, if exploited, could allow a remote attacker to take complete control of an affected system. This vulnerability can be exploited if a user visits a specifically crafted web page or e-mail that contains a specially crafted script. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, ...

A vulnerability in Microsoft Internet Explorer could allow an attacker to take complete control of an affected system. The vulnerability may be exploited if a user visits a specifically crafted web page or receives an email with specifically crafted content. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet Explorer ...

Seven new vulnerabilities have been discovered in versions of Microsoft Office Excel which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by opening malicious Excel document (.XLS) email attachments or by visiting Web sites that host malicious Excel documents. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. The update released today ...

A number of new vulnerabilities have been discovered in Microsoft Office. These issues may allow an attacker to take complete control of an affected system. The vulnerabilities can be exploited if a user visits a specifically crafted web page, or by opening a malicious Microsoft Office file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft Office 2000 ...

Seven new vulnerabilities have been discovered in versions of Microsoft Office Excel which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by opening malicious Excel document (.XLS) email attachments or by visiting Web sites that host malicious Excel documents. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. The update released today ...

Two vulnerabilities have been discovered in Microsoft Office Web Components which could allow a remote attacker to take complete control of an affected system. The vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft Office 2000 Service Pack 3 Microsoft Office XP Service Pack 3 Microsoft ...

To enhance the user experience when visiting web sites, web pages sometimes use applications developed with the programming language called Java. A vulnerability has been discovered in the way Java (Java Runtime Environment) processes images. This vulnerability could allow a remote attacker to run arbitrary code with the same privileges of the user running the affected application. This vulnerability can be exploited when a user visits a web site that contains a specially-crafted and malicious image file. Examples of file types that could be used to exploit this vulnerability include JPG and BMP. Exploit code is publicly available ...

A new vulnerability has been discovered in Microsoft Windows Operating systems which could allow an attacker to take complete control of the affected system. The vulnerable component (WebDAV Mini-Redirector) is enabled by default on all Microsoft Windows Operating Systems except Windows Server 2003. This vulnerability can be exploited if a user visits a malicious web site which sends back a specially-formatted web response. Successful exploitation will result in an attacker gaining administrator-level privileges on a vulnerable computer; the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft ...

Several new security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. The default installation of both products includes the Adobe Reader Plugin, which allows users to view PDF files within a web browser such as Internet Explorer or Firefox. These vulnerabilities can be exploited if a user views a malicious PDF file in a web browser or attempts to open a malicious PDF file which has been downloaded or received as an ...

This advisory only pertains to organizations that use Novell Netware for local area network services. Novell Netware provides services such as browsing or accessing NetWare directories, transfering or sharing files and printing services. A vulnerability has been discovered in the Novell Netware Client software which is run on an end user's computer. This vulnerability will allow an attacker to execute arbitrary code on the affected system. If successfully exploited, the attacker could gain system level privileges and install programs, view, change, or delete data, or create new accounts. Unsuccessful attempts to exploit this vulnerability will likely result in a ...

A new vulnerability has been discovered in Microsoft Windows Operating system which could allow an attacker to take complete control of the affected system. The vulnerability can be exploited if a user visits a specifically crafted web page, views a malicious HTML email message, or opens a malicious Microsoft Office file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft ...

Four vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 for Windows ...

A new vulnerability has been discovered in certain versions Microsoft Office Excel, software that processes spreadsheets. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This vulnerability can be exploited by opening a malicious Excel spreadsheet (.XLS) which was emailed as an attachment, or by visiting a Web site that is hosting a malicious Excel spreadsheet. At this time, Microsoft has confirmed this vulnerability ...

Many websites employ 3D animation or movies using Shockwave Flash (SWF) files to enhance the user experience when visiting web sites. If your website is hosting a SWF file, it may be used by attackers to exploit users visiting the website, giving the attacker complete control over the user's session. A book, Hacking Exposed: Web 2.0, Web 2.0 Security Secrets and Solutions, detailing these vulnerabilities was recently published. SYSTEMS AFFECTED: Rich Cannings, a security researcher and author, recently released a document identifying various web authoring tools that can produce vulnerable SWF files such as: Adobe Dreamweaver Adobe Acrobat Connect, ...

Multiple vulnerabilities have been discovered in Adobe Flash Player. These vulnerabilities can be exploited if a user visits a website hosting the malicious content or opens a malicious Flash file. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged on user. This may allow the attacker to take complete control of the affected system. It should be noted that Adobe Flash Player is installed on most of the systems where web browsers are used to access the Internet. SYSTEMS AFFECTED: Adobe Flash Player 7.0.69.0 Adobe Flash Player 8.0.34.0 Adobe Flash ...

A new vulnerability in Apple Quicktime is actively being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site. If the vulnerability is successfully exploited, an attacker may be able to execute arbitrary code on a vulnerable system with the same rights of the logged-on user this may allow the attacker to gain complete control of the affected system. Note that there is currently no patch for this vulnerability. DECEMBER 14 UPDATED INFORMATION: Apple released a patch that addresses the QuickTime RTSP vulnerability. This patch also addresses two other vulnerabilities; refer ...

Four vulnerabilities have been identified in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. It should be noted that these vulnerabilities are currently being exploited. SYSTEMS AFFECTED: Microsoft Internet Explorer ...

A new vulnerability has been discovered which is caused by improper handling of certain Windows media content files. Client applications which make use of Microsoft Media Format Runtime, such as Windows Media Player, can be exploited if a user visits a malicious web page or manually opens a malicious media file. This vulnerability can be exploited if a user visits a malicious webpage which is specially designed to exploit this vulnerability. Alternatively, an attacker could send specially crafted content to a server, such as a streaming media server, which is configured to process the file. An attacker who successfully exploited ...

Vulnerabilities have been found in Microsoft DirectX which handles audio and video media files in applications such as Windows Media Player. These vulnerabilities could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page or opens a maliciously crafted file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. ...

A new vulnerability in Apple Quicktime is actively being exploited on the Internet. Apple Quicktime is a media player for the Mac OS X and Microsoft Windows operating systems. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious e-mail attachment. If the vulnerability is successfully exploited, an attacker may be able to execute arbitrary code on a vulnerable system with the same rights of the logged-on user. This may allow the attacker to gain complete control of the affected system. Note that there is currently no patch for this vulnerability. SYSTEMS ...

A new vulnerability has been discovered in the IBM Lotus Notes email client for which public exploit code is available on the Internet. The vulnerability can be exploited if a user opens an email and views a malicious Lotus 1-2-3 (IBM Lotus Software's spreadsheet program) file attachment. A successful attack would corrupt memory and execute malicious code providing the attacker with the same privileges as the logged-on user. If the user is logged-on with administrative privileges, the attacker can take complete control of the affected system, add/modify or delete user accounts and programs. SYSTEMS AFFECTED: IBM Lotus ...

A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. There ...

A new vulnerability has been discovered in the IBM Lotus Notes email application. The vulnerability can be exploited if a user opens an email and views a malicious attachment. Successful exploitation would result in the attacker gaining the same rights as the logged-on user. This may allow the attacker to gain complete control of the system. SYSTEMS AFFECTED: IBM Lotus Notes 7.0.2 Verity Keyview Export SDK 7 Verity Keyview Export SDK 8 Verity Keyview Export SDK 9 Verity Keyview Filter SDK 7 Verity Keyview Filter SDK 8 Verity Keyview Filter SDK 9 Verity Keyview Viewer SDK 7 Verity ...

A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. There has ...

RealPlayer is a product used to listen to audio files or to view videos files. A new vulnerability in RealPlayer is currently being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious email. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged-on user. This may allow the attacker to take complete control of the affected system. Note that there is currently no patch for this vulnerability. See updated information below. OCTOBER 22 UPDATED INFORMATION: RealPlayer released a patch that addresses ...

RealPlayer is a product used to listen to audio files or to view videos files. A new vulnerability in RealPlayer is currently being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious email. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged-on user. This may allow the attacker to take complete control of the affected system. Note that there is currently no patch for this vulnerability. SYSTEMS AFFECTED: Real Networks RealPlayer Versions: 6.0.14.544 6.0.14.550 (11 Beta) 6.0.12.1662 (10.5) 6.0.12 ...

A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. There has also been limited exploitation of this vulnerability ...

Three vulnerabilities have been found in Microsoft Internet Explorer that could allow an attacker to take complete control of the affected system or to trick users into believing they are connected to a trusted web site. Two of these vulnerabilities make it easier for an attacker to create phishing web sites that appear to be legitimate sites by allowing an attacker to display a spoofed address in the browser's address bar. For example; while your browser may display www.eBay.com, the actual website address could be www.malicous-site.com. Exploits of this nature may increase the success rate of phishing attacks, because ...

A new vulnerability has been discovered in the components of Microsoft Windows that render images for the user. This vulnerability can be exploited if a user opens an email attachment containing a malicious image file. This vulnerability may affect any program that render images and successful exploitation may result in the attacker taking complete control of the affected system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Windows Server 2003 Service Pack 1 Windows Server 2003 x64 Edition Windows Server 2003 Service Pack 1 for ...

A new vulnerability has been discovered in Adobe Flash Player. This vulnerability can be exploited if a uservisits amaliciouswebpage that hosts a malicious fileoropens a malicious email attachment.Successful exploitation may result in the attacker executing malicious code utilizing the same privileges as the victim. For example, if the victim had system administrator privileges, the attacker would have the same privileges. Successful exploitation of this vulnerability could lead to victim's browser to crash, a denial of service or arbitrary code execution. Adobe Flash Player is installed on many Microsoft Windows, Mac OSX, and Linux/UNIX workstations. Web sites commonly use Adobe ...

Multiple vulnerabilities have been discovered in the Java Runtime Environment (JRE) and the Java Web Start application which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited when a user visits a web site that contains a malicious JPEG or BMP image file or malicious Java configuration file (a JNLP file). Exploit code is publicly available for these vulnerabilities. Java Runtime Environment is installed on many Microsoft Windows, Mac OSX, and Linux/UNIX workstations and servers since many web and business applications use it for enhanced functionality. SYSTEMS ...

Microsoft has released Security Bulletin (MS07-040), which identifies three vulnerabilities in the Microsoft .NET Framework. The .NET Framework is Microsoft's managed code programming model for applications. ASP.NET is a part of Microsoft's .NET framework that is used to build web sites and web applications. Two of the vulnerabilities allow a successful attacker to execute malicious code on the system. These vulnerabilities can be exploited by a user visiting a malicious website. The third vulnerability affects web servers running ASP.NET and if exploited can result in information disclosure. An attacker may exploit this vulnerability by sending a specially crafted ...

Five vulnerabilities have been found in Microsoft Internet Explorer that could allow arbitrary code execution. These vulnerabilities can be exploited if a user visits a malicious website or clicks on a link in an email. An attacker who successfully exploited a system with any of the five vulnerabilities mentioned below could take complete control of a compromised system. If the user is running Internet Explorer and is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Proof of concept code has been made publicly available ...

Five vulnerabilities have been found in Microsoft Internet Explorer that could allow arbitrary code execution. These vulnerabilities can be exploited if a user visits a malicious website or clicks on a link in an email. An attacker who successfully exploited a system with any of the five vulnerabilities mentioned below could take complete control of an compromised system. If the user that is running Internet Explorer is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Proof of concept has been made publicly available for ...

A vulnerability in the Novell GroupWise System (Novell's Email system) has been discovered due to a design error in the GroupWise application. This vulnerability allows a malicious user to intercept network traffic without user knowledge. This traffic can include highly sensitive information, such as authentication credentials (usernames and passwords). SYSTEMS AFFECTED: Novell GroupWise 7.0 Novell GroupWise 6.5 SP6 Novell GroupWise 6.5 SP5 Novell GroupWise 6.5 SP4 Novell GroupWise 6.5 SP3 Novell GroupWise 6.5 SP2 Novell GroupWise 6.5 SP1 Novell GroupWise 6.5 Novell GroupWise 7.0.0 SP1 RISK: Government: Large and medium government entities: ...

A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. APRIL 20 UPDATED INFORMATION: Microsoft has updated its advisory to include new attack vectors for this vulnerability. MAY 08 UPDATED INFORMATION: Microsoft has released security bulletin MS-07-029, which provides ...

A vulnerability exists in a Microsoft security technology called CAPICOM which allows application developers to easily incorporate digital signatures and encryption functionality into applications. The known vehicle for exploiting CAPICOM is though the web browser, Internet Explorer. If successfully exploited, a remote attacker can take complete control of the affected system. Of particular importance is that the presence of CAPICOM on computers used by general users may be more wide spread than expected. For this reason, organizations should assume systems are vulnerable and apply the appropriate patches as soon as possible. SYSTEMS AFFECTED: CAPICOM Platform SDK Redistributable: ...

Four vulnerabilities have been found in Microsoft Exchange Server which could allow malicious users to cause a denial of service and in some cases allow the attacker to take complete control of the vulnerable system. All of these vulnerabilities can be exploited by sending a specially crafted malicious email to an account on a vulnerable Microsoft Exchange Server. This is particularly important because no user action is required to exploit this vulnerability. Additionally, one of these vulnerabilities, if successfully exploited, can allow an attacker to remotely execute commands which then gives the attacker the ability to take complete ...

Microsoft has released Security Bulletin (MS07-027) which announces a cumulative security update for Internet Explorer. This advisory addresses five vulnerabilities found in Microsoft Internet Explorer. An attacker may exploit these vulnerabilities by convincing a user to visit a malicious web site. If successful, the attacker will be able to take complete control of the affected system with the same user rights as the logged-on user. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 Microsoft Windows Server 2003 for ...

A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. APRIL 20 UPDATED INFORMATION: Microsoft has updated its advisory to include new attack vectors for this vulnerability. SYSTEMS AFFECTED: Microsoft Small Business Server 2000 Microsoft ...

A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. SYSTEMS AFFECTED: Microsoft Small Business Server 2000 Microsoft Small Business Server 2003 Microsoft Small Business Server 2003 Premium Edition Microsoft Windows 2000 Server SP4 Microsoft Windows ...

A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. MARCH 30 UPDATED INFORMATION: This vulnerability can also be exploited if a user merely views an email within the ...

A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. MARCH 30 UPDATED INFORMATION: This vulnerability can also be exploited if a user merely views an email within the ...

A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. SYSTEMS AFFECTED: Microsoft Windows 2000 SP4 Microsoft Windows XP SP2 Microsoft Windows XP 64-bit Version 2003 (Itanium) Microsoft ...

Three vulnerabilities have been found in Microsoft Internet Explorer that would allow an attacker to obtain complete control of the affected system. These vulnerabilities can be exploited if a user visits a malicious web site or a legitimate web site that may contain advertisements that have had malicious code inserted into them. Two of the three vulnerabilities have public exploit code available. Microsoft has released three security bulletins addressing each of the vulnerabilities. We are including the three security bulletins in one advisory since they share common exploit mechanisms, workarounds, risk potential; and to emphasize that they should all ...

A new vulnerability has been discovered in Microsoft Office PowerPoint that could allow a remote attacker to run and execute commands on the local system. This vulnerability can be exploited if a user opens a malicious PowerPoint file which has been specifically crafted to exploit this vulnerability. AUGUST 8 UPDATED INFORMATION : Microsoft has released a new security bulletin (MS06-048) that supplies a patch to the Microsoft Office Library file 'mso.dll'. In addition to the patch, a new vulnerability in Microsoft Office PowerPoint has been found and would allow a remote attacker to run and execute commands on ...

Microsoft is reporting a new vulnerability in the way several Microsoft antivirus and security products process Adobe Portable Document Format (PDF) files. Of particular concern is Microsoft's antivirus email gateway product, Antigen, which is used by organizations to identify and quarantine malicious code. If an exploit is successful, an attacker could obtain complete control of this critical system. SYSTEMS AFFECTED: Windows Live OneCare Microsoft Antigen for Exchange 9.x Microsoft Antigen for SMTP Gateway 9.x Microsoft Windows Defender Microsoft Windows Defender x64 Edition Microsoft Windows Defender in Windows Vista Microsoft Forefront Security for Exchange Server Microsoft Forefront ...

A vulnerability exists Sun Microsystems Solaris operating system which allows an individual to gain unauthenticated access and would allow an attacker to gain complete control over the affected system. A remote exploit has been published and made available to the general public. At this point in time, a patch is not available although workarounds such as blocking the vulnerable service or implementing a more secure service are recommended. SYSTEMS AFFECTED: Solaris 10 x86 Solaris 10 SPARC RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small ...

Multiple vulnerabilities have been found in several versions of Cisco network devices including their switches and routers which could allow an attacker to cause a Denial of Service or execute commands by sending specially-formatted network traffic to an affected device. At this time, there are no known successful compromises or public attack tools for these vulnerabilities. In addition, it is important to note that Cisco PIX firewalls are not affected. SYSTEMS AFFECTED: Cisco IOS software versions 9.x, 10.x, 11.x and 12.x Cisco IOS XR software versions 2.0.X, 3.0.X, and 3.2.X. RISK: Government: Large and medium government ...

A wide-spread Trojan horse infection called Peacomm is being distributed via email attachments. When the attachment is opened, the Trojan infects the computer and allows a hacker to control the infected system. It also attempts to download other malicious software for further exploitation of the affected computer. The highest risk is to home users since most organizations already block executable email attachments. However, an organization's risk may be higher if it allows staff to use their personal computers (e.g. remote access via dial in or broadband connections) to access the organization's internal network or allows employees to connect their ...

A vulnerability has been found in multiple versions of the Adobe Acrobat Reader Plugin, which allows users to view Portable Document Format (PDF) files via a web browser such as Internet Explorer or Firefox. The Adobe Acrobat Reader installs the plugin by default. Please note that only Adobe Acrobat Reader Plugin is vulnerable to this attack. This vulnerability can be exploited if an attacker can convince a user to click on a maliciously crafted link (URL) to open a PDF file. The vulnerability does not exist in the PDF document but in the parameters passed to the plugin. An ...

A new vulnerability has been identified in both the Microsoft Outlook Email Client and the Microsoft Exchange Email Server. Microsoft has assigned this vulnerability a severity rating of Critical due to the fact that this may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit this vulnerability, an attacker must craft a malicious email message and send it to a vulnerable system. No user action is required for the successful exploitation of an affected Microsoft Exchange Server; the server must only accept a specially-crafted email message. For desktops running ...

Microsoft has released Microsoft Security Bulletin MS07-004 which addresses a new vulnerability in multiple versions of Microsoft Windows. If successfully exploited, this vulnerability could allow for a remote attacker to execute arbitrary programs on the system with the current user's privileges. Microsoft has confirmed reports of widespread use of these exploits in the wild. Vulnerable systems can be exploited by visiting malicious web sites with Internet Explorer or by viewing malicious HTML email messages in Outlook. Note that this patch replaces the patch released with the Microsoft Security Bulletin MS06-055. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows ...

A vulnerability has been found in multiple versions of the Adobe Acrobat Reader Plugin, which allows users to view Portable Document Format (PDF) files via a web browser such as Internet Explorer or Firefox. The Adobe Acrobat Reader installs the plugin by default. Please note that only the Adobe Acrobat Reader Plugin is vulnerable to this attack. This vulnerability can be exploited if an attacker can convince a user to click on a maliciously crafted link (URL) to open a PDF document. The vulnerability does not exist in the PDF document but in the parameters passed to the plugin. An ...

Two new vulnerabilities were found in components of Windows, which provide audio and video data for media applications such as Windows Media Player. If properly exploited, an attacker would be able to gain same user rights as the person logged into that system. SYSTEMS AFFECTED: Microsoft Windows Media Format 7.1 through 9.5 Series Runtime on the following operating system versions: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 x64 Edition Microsoft ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The U.S. Department ...

Multiple vulnerabilities were found in certain wireless drivers and adapters. If properly exploited, an attacker would be able to take complete control of the target system. These vulnerabilities are currently being exploited. These components are embedded within computers (particularly laptops) including, but not limited to, those from HP, Dell, Gateway, eMachines and Macintosh. SYSTEMS AFFECTED: Broadcom Wireless Driver 3.50.21.10 D-Link DWL-G132 wireless adapter Microsoft Windows XP Service Pack 1 and Service Pack 2 Linux - All versions Macintosh - All versions RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The U.S. Department ...

Multiple vulnerabilities exist in Macromedia Flash Player from Adobe that could allow a remote attacker to obtain complete control of an affected system. These vulnerabilities can be exploited if a user visits a malicious web page which contains a specially crafted Flash Animation (SWF) file. Currently there are no known publicly available exploits for these vulnerabilities although proof of concept code does exist. NOVEMBER 14 UPDATED INFORMATION: Microsoft has released a new security bulletin (MS06-069) that replaces prior security updates (MS06-020) for vulnerabilities affecting the Adobe Macromedia Flash Player. Customers that have followed the guidance in Adobe Security Bulletin APSB06-11, issued ...

Several vulnerabilities exist in specific ActiveX controls, which could allow an attacker to gain control of an affected system. These vulnerabilities can be exploited by a user visiting a malicious web site with Internet Explorer, or viewing a specially crafted HTML email message. According to Microsoft, these vulnerabilities are currently being exploited in the wild. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows ...

A vulnerability exists in a core component of Microsoft Windows, which could allow an attacker to gain control of the affected system. This vulnerability can be exploited by a user visiting a malicious web site with Internet Explorer, or viewing a specially crafted email message. According to SANS and other sources, this vulnerability was being actively exploited via the Internet since 9/29/2006, thus it is important to apply this patch immediately after appropriate testing. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows ...

Several exploit programs have been made public for a vulnerability in Microsoft Windows that affects even fully patched systems. There are publicly available exploits affecting both Microsoft Internet Explorer and Microsoft Outlook. These exploits could allow for a remote attacker to execute arbitrary programs on the system with the current user's privileges. Currently we have confirmed reports widespread use of these exploits in the wild in the past 24 hours. A user can be exploited by visiting specific malicious web sites with Internet Explorer or by viewing malicious HTML email messages in Outlook. Microsoft has confirmed this vulnerability but currently does ...

Several exploit programs have been made public for a vulnerability in Microsoft Windows that affects even fully patched systems. There are publicly available exploits affecting both Microsoft Internet Explorer and Microsoft Outlook.  These exploits could allow for a remote attacker to execute arbitrary programs on the system with the current user’s privileges. Currently we have confirmed reports widespread use of these exploits in the wild in the past 24 hours. This flaw can be exploited either by visiting specific malicious web sites with Microsoft Internet Explorer or by viewing malicious email messages in Outlook in HTML format. Microsoft has ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants, so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The U.S. Department of Homeland Security issued a press release ...

A new vulnerability has been discovered in Microsoft Office PowerPoint that could allow a remote attacker to run and execute commands on the local system. This vulnerability can be exploited if a user opens a malicious PowerPoint file which has been specifically crafted to exploit this vulnerability. AUGUST 8 UPDATED INFORMATION: Microsoft has released a new security bulletin (MS06-048) that supplies a patch to the Microsoft Office Library file 'mso.dll'. In addition to the patch, a new vulnerability in Microsoft Office PowerPoint has been found and would allow a remote attacker to run and execute commands on the local system. SYSTEMS AFFECTED: ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server Service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. SYSTEMS AFFECTED: Microsoft Windows 2000 Microsoft Windows XP Service Packs 1 and 2 Microsoft ...

There have been reports of multiple vulnerabilities which have been discovered in Microsoft Office PowerPoint that could allow a remote attacker to run and execute commands on the local system or cause a Denial of Service. Currently, these vulnerabilities are being exploited in the wild by various Trojans. The user's computer can be exploited by visiting a malicious website which contains a specially crafted PowerPoint file, or opening a malicious PowerPoint file delivered as an email attachment. After successful exploitation, an attacker could take complete control of a vulnerable system, and perform actions such as install programs, view, ...

A new vulnerability, which is being actively exploited, has been discovered in Microsoft Office Excel that could allow a remote attacker to run and execute commands on the local system. This vulnerability can be exploited if a user visits a malicious web page which is specifically crafted to exploit this vulnerability. However, a more important concern is that this vulnerability can be exploited by receiving and executing the malicious Excel (.XLS) email attachments which are not likely to be blocked by email filters. It is important to note that Microsoft has not yet confirmed or provided a patch ...

A new vulnerability, which is being actively exploited, has been discovered in Microsoft Office Excel that could allow a remote attacker to run and execute commands on the local system. This vulnerability can be exploited if a user visits a malicious web page which is specifically crafted to exploit this vulnerability. However, a more important concern is that this vulnerability can be exploited by receiving and executing the malicious Excel (.XLS) email attachments which are not likely to be blocked by email filters. It is important to note that Microsoft has not yet confirmed or provided a patch for ...

A vulnerability has been discovered in Microsoft Windows operating systems that could allow a remote attacker to take complete control of an affected system with limited user interaction. The user's computer can be exploited by visiting a malicious website which contains a specially crafted ART image or view a specially crafted HTML email message that contains the malicious ART image. This also includes previewing the email message using the preview window within Outlook. Note that ART is an image format that is commonly used by America Online (AOL) software however Windows XP and 2003 also recognizes ART formats even ...

A new vulnerability in multiple versions of Windows has been discovered in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). This vulnerability is separate from the recent WMF vulnerability that was patched in Microsoft Security Bulletin MS06-001 on January 5, 2006. There is currently no patch for this vulnerability. In order to be exploited, a user must visit a malicious web site, open an email message, or access a computer directory folder that contains a specially-crafted WMF file. UPDATE 6/13/2006: Microsoft has released a patch for this vulnerability for the ...

On May 9, 2006, Microsoft reported that a vulnerability exists in several versions of Microsoft Exchange Server. An attacker can send a specially-crafted calendar message which when processed by the Exchange server will allow the attacker to take complete control of the vulnerable system. SYSTEMS AFFECTED: Microsoft Exchange Server 2000 Service Pack 3 Microsoft Exchange Server 2003 Service Pack 1 Microsoft Exchange Server 2003 Service Pack 2 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small business entities: High ...

Multiple vulnerabilities exist in Macromedia Flash Player from Adobe that could allow a remote attacker to obtain complete control of an affected system. These vulnerabilities can be exploited if a user visits a malicious web page which contains a specially crafted Flash Animation (SWF) file. Currently there are no known publicly available exploits for these vulnerabilities although proof of concept code does exist. SYSTEMS AFFECTED: Macromedia Flash Player from Adobe version 6 or earlier RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: ...

Microsoft has released Security Bulletin (MS06-013) which announces a cumulative security update for Internet Explorer. This advisory addresses seven new vulnerabilities and updates three previously reported vulnerabilities (see description below). An attacker may exploit these vulnerabilities by convincing a user to visit a malicious Web site or to view a Web site containing a malicious banner advertisement. If the most severe of these vulnerabilities is exploited, an attacker can gain unauthorized access to a system with the same privileges as the local user. In the case of a local user with administrative rights, this can mean complete control of ...

Microsoft is reporting a new vulnerability in the Internet Explorer browser. This vulnerability could allow a remote attacker to obtain complete control of an affected system. This vulnerability can be exploited if a user visits a malicious web page which is specifically crafted to exploit this vulnerability. A user could also visit a legitimate web page hosting a malicious banner ad and be exploited. Currently there are no known publicly available exploits for this vulnerability. SYSTEMS AFFECTED: Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional ...

A new vulnerability which could allow remote control of both servers and workstations running Windows 2000 SP4 has been discovered in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). This vulnerability is separate from the earlier WMF vulnerability that was patched in Microsoft Security Bulletin MS05-053 and MS06-001. It should be noted that this update replaces the update that is included in Microsoft Security Bulletin MS05-054 and is separate from the one reported in CSCIC Advisory 2006-001 http://www.cscic.state.ny.us/advisories/2006/01_09.cfm. SYSTEMS AFFECTED: Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Professional SP4 ...

Blackmal.E (aka Nyxem.E, MyWife.d) is a new email worm which will overwrite or destroy files on an infected system on the third day of each month. The files destroyed include Microsoft Office files including Word documents, Access database and PowerPoint files; files belonging to various Anti-Virus applications; Adobe Acrobat files and others. In addition to spreading via email, this worm can also spread through network file sharing where the file shares are not password protected or have a weak password. Although anti-virus vendors are rating this low-medium risk, it is important to note the destructive nature of this worm. Additionally, the ...

A new vulnerability has been identified in both the Microsoft Outlook Email Client and the Microsoft Exchange Email Server. Microsoft has assigned this vulnerability a severity rating of Critical due to the fact that this may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit this vulnerability, an attacker must craft a malicious email message and send it to a vulnerable system. No user action is required for the successful exploitation of an affected Microsoft Exchange Server; the server must only accept a specially-crafted email message. For desktops running ...

On January 10, 2006 Microsoft reported a vulnerability in the Windows operating system in the way it handles fonts included in web pages or HTML formatted emails. This vulnerability can be remotely exploited by crafting a malicious font embedded in an HTML email or web page and having a user view the email or visit the website. Successful exploitation can lead to complete remote control of an affected system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 Microsoft Windows XP 64-Bit Edition Microsoft Windows Server 2003 ...

A new vulnerability in multiple versions of Windows has been discovered in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). This vulnerability is separate from the recent WMF vulnerability that was patched in Microsoft Security Bulletin MS06-001 on January 5, 2006. There is currently no patch for this vulnerability. In order to be exploited, a user must visit a malicious web site, open an email message, or access a computer directory folder that contains a specially-crafted WMF file. SYSTEMS AFFECTED: Microsoft Windows XP Tablet PC Edition SP2 Microsoft ...

An exploit has been made public for a newly discovered vulnerability in Windows XP Service Pack 2 and Windows 2003 Web Server Edition Service Pack 1 that affects even fully patched systems. The vulnerability is in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). WMF images are commonly used for Microsoft Office clipart and other pictures. If infected, various malicious programs will be downloaded and installed onto the infected system.  These malicious programs may include keystroke loggers and Trojans.  Currently, a user must visit a specific malicious web site to be exploited however the potential ...

An exploit has been made public for a newly discovered vulnerability in Windows XP Service Pack 2 and Windows 2003 Web Server Edition Service Pack 1 that affects even fully patched systems. The vulnerability is in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). WMF images are commonly used for Microsoft Office clipart and other pictures. If infected, various malicious programs will be downloaded and installed onto the infected system. These malicious programs may include keystroke loggers and Trojans. Currently a user must visit a specific malicious web site to be ...

An exploit has been made public for a newly discovered vulnerability in Windows XP Service Pack 2 and Windows 2003 Web Server Edition Service Pack 1 that affects even fully patched systems. The vulnerability is in the portion of Windows that processes a specific type of image file called Windows Meta File (WMF). WMF images are commonly used for Microsoft Office clipart and other pictures. If infected, various malicious programs will be downloaded and installed onto the infected system. These malicious programs may include keystroke loggers and Trojans. Currently a user must visit a specific malicious web site to be ...

Vulnerabilities have been identified in the Symantec Antivirus Library which could allow a remote attacker to take complete control of an affected system without any user interaction. The Symantec Antivirus Library is part of a number of network devices and consumer products. The vulnerability can be exploited when an affected device or product scans a specially-crafted file using RAR (Roshal Archive) compression. Exploit code is not publicly available, and Symantec has not seen any examples of proof of concept code for either vulnerability at this time. SYSTEMS AFFECTED: Norton AntiVirus for Microsoft Exchange Symantec Mail Security for ...

Vulnerabilities have been identified in both the Microsoft Distributed Transaction Coordinator (MSDTC) and the Microsoft Component Object Model (COM+). Microsoft Distributed Transaction Coordinator (MSDTC) is used to manage transactions across multiple servers. It is used by applications such as Microsoft Personal Web Server and Microsoft SQL Server. Microsoft COM+ enables software components to communicate. Microsoft has assigned these vulnerabilities a severity rating of Critical due to the fact that they may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit these vulnerabilities, an attacker must craft a malicious network ...

A new vulnerability has been reported for Cisco PIX firewalls that are in use by many organizations. The vulnerability is relatively easy to exploit and can result in a denial of service that could prevent access to some or all applications by legitimate users. This issue is considered a high risk because firewalls tend to be exposed to the Internet, there is currently no patch available and there is a publicly available exploit for this vulnerability. CSCIC will send out an update if and when an patch is available. SYSTEMS AFFECTED: Cisco PIX Firewall 2.7.0 Cisco PIX Firewall 3.x ...

Multiple vulnerabilities were found in the exchange of encryption keys on some Cisco and Juniper devices.  These vulnerabilities may result in a Denial of Service (DoS). The messages are most commonly used in Virtual Private Networks (VPNs).  VPNs are commonly used for employees who use laptops to access their office network or between business partner networks.  In many cases these devices are exposed directly to the Internet, therefore this issue should be addressed as soon as possible.  November 18, Updated Information Some Checkpoint products were also found to be vulnerable. SYSTEMS AFFECTED: Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 ...

Multiple vulnerabilities were found in the exchange of encryption keys on some Cisco and Juniper devices. These vulnerabilities may result in a Denial of Service (DoS). The messages are most commonly used in Virtual Private Networks (VPNs). VPNs are commonly used for employees who use laptops to access their office network or between business partner networks. In many cases these devices are exposed directly to the Internet, therefore this issue should be addressed as soon as possible. SYSTEMS AFFECTED: Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T Cisco PIX Firewall versions up to but not including 6.3(5) ...

An anonymous developer has released proof-of-concept source code for a worm that has the ability to compromise Oracle databases that are using default username and password combinations. Since these default account combinations are known, they create a risk of compromise to the database if left unchanged. Once a database has been compromised usernames and passwords may be harvested. SYSTEMS AFFECTED: Oracle Databases RISK: Government: Large and medium government entities: Medium Small government entities: Medium Businesses: Large and medium business entities: Medium Small business entities: Low Home users: Low DESCRIPTION: The proof of concept code is for a worm that has the ...

Vulnerabilities have been identified in both the Microsoft Distributed Transaction Coordinator (MSDTC) and the Microsoft Component Object Model (COM+). Microsoft Distributed Transaction Coordinator (MSDTC) is used to manage transactions across multiple servers. It is used by applications such as Microsoft Personal Web Server and Microsoft SQL Server. Microsoft COM+ enables software components to communicate. Microsoft has assigned these vulnerabilities a severity rating of Critical due to the fact that they may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit these vulnerabilities, an attacker must craft a malicious network ...

Vulnerabilities have been identified in both the Microsoft Distributed Transaction Coordinator (MSDTC) and the Microsoft Component Object Model (COM+). Microsoft Distributed Transaction Coordinator (MSDTC) is used to manage transactions across multiple servers. It is used by applications such as Microsoft Personal Web Server and Microsoft SQL Server. Microsoft COM+ enables software components to communicate. Microsoft has assigned these vulnerabilities a severity rating of Critical due to the fact that they may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit these vulnerabilities, an attacker must craft a malicious network ...

Four States have reported impacts regarding the above vulnerability involving the following worms Zotob / RBOT.CBQ and Esbot / IRCBot. Two states have reported wide spread worm activity within multiple agencies. Initial reports are that the worms involved are all variants of W32.Zotob (A, B, C, D, E and F) and W32.Esbot. Please be advised that we have received reports that certain variants of Spybot are also piggybacking the Zotob worm. W32.Esbot.A also exploits the Microsoft Windows Plug and Play Buffer Overflow Vulnerability. This worm works similarly to the Zotob worm in that it will open a back door and ...

A critical vulnerability exists in the Microsoft Plug and Play (PnP) service which allows an attacker to remotely execute arbitrary code on an affected system. The Plug and Play (PnP) service is used to simplify the installation of new hardware on most Windows-based operating systems. If an attacker successfully exploits this vulnerability, it will give the attacker complete control over the affected system. Exploit code was not publicly available at the time of our original advisory. August 12, UPDATED INFORMATION: An exploit for this vulnerability has been made available to the public (See http://downloads.securityfocus.com/vulnerabilities/exploits/Win2000-MS05-039.c) and CSCIC has successfully tested it ...

Microsoft has just released a Security Bulletin (MS05-038) which announces a cumulative security update for Internet Explorer and addresses three new vulnerabilities (see description below). If the most severe of these vulnerabilities is exploited, an attacker can completely take control of a user's system by sending a specially formed image in an email message or causing the user to connect to a malicious website. August 10, UPDATED INFORMATION: An exploit for one of the three vulnerabilities addressed in MS05-038 has been made available to the public almost immediately after Microsoft posted the bulletin (see http://www.frsirt.com/exploits/20050809.MS05-038.pl.php).  This significantly increases the potential ...

A critical vulnerability exists in the Microsoft Plug and Play (PnP) service which allows an attacker to remotely execute arbitrary code on an affected system. The Plug and Play (PnP) service is used to simplify the installation of new hardware on most Windows-based operating systems. If an attacker successfully exploits this vulnerability, it will give the attacker complete control over the affected system. Exploit code is not publicly available at this time. Microsoft has not received information that this vulnerability is being exploited on the Internet. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and ...

Microsoft has just released a Security Bulletin (MS05-038) which announces a cumulative security update for Internet Explorer and addresses three new vulnerabilities (see description below). If the most severe of these vulnerabilities is exploited, an attacker can completely take control of a user's system by sending a specially formed image in an email message or causing the user to connect to a malicious website. SYSTEMS AFFECTED: Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4 Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4 Internet Explorer 6 Service Pack 1 on Microsoft Windows ...

Microsoft has reported a new vulnerability in the Windows Print Spooler service. The Print Spooler service is used for local and remote printing and is enabled on Windows systems by default. This vulnerability could lead to possible remote code execution or a Denial of Service condition on affected systems. If exploited successfully an attacker could take complete control of the system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and Service Pack 2 Microsoft Windows Server 2003 Microsoft Windows Server 2003 for Itanium-based systems RISK: Government: Large and medium government entities: High Small government entities: ...

A recent presentation at the 2005 Black Hat Conference demonstrated proof-of-concept exploit code for a recently announced vulnerability in the Cisco Internetwork Operating System (IOS). Successful exploitation of this vulnerability could allow an attacker to gain complete control of vulnerable devices. To be successful, an attacker needs direct access to the network segment where the vulnerable equipment is located and the vulnerable feature must be enabled. It is important to note that this vulnerable feature is not enabled by default. Because of the prevalence of Cisco networking equipment on the Internet, this presentation at the Black Hat Conference is of particular ...

On July 22nd 2005, two states reported virus and worm activity within multiple agencies. Initial reports suggest this may be a new variant of SDBot or Spybot which includes a rootkit installation of either NTRootkit.J or Trojan.Cachecachekit. SYSTEMS AFFECTED: Microsoft Windows 2000/95/98/ME/NT/XP RISK: Government: Large and medium government entities: Medium Small government entities: Medium Businesses: Large and medium business entities: Medium Small business entities: Medium Home users: Medium DESCRIPTION: States that have reported infections have observed brute force password attacks, causing a substantial number of user-account lockouts. Based on this information and our current knowledge of the identified malicious code, agencies should treat the following ...

On July 3, 2005 Microsoft issued a security bulletin regarding a new vulnerability that was discovered in Microsoft Internet Explorer. This vulnerability could be exploited by a remote attacker to crash the user's web browser or execute arbitrary commands under the rights of the current user. It can be exploited via a malicious Web page to compromise and take complete control of a vulnerable system. An exploit for this vulnerability has been made available to the public. (See http://www.frsirt.com/exploits/20050702.iejavaprxyexploit.pl.php). This exploit was researched and tested by CSCIC. CSCIC was able to successfully exploit a Windows XP (SP2) host with Internet ...

A vulnerability exists in the Microsoft Color Management Module which allows an attacker to remotely execute arbitrary code on an affected system. An attacker could exploit this vulnerability by constructing a malicious image that allows remote code execution if a user visits a website hosting the image or views an email containing the image. If an attacker successfully exploits this vulnerability, it will give the attacker complete control over the affected system. Exploit code has not been made publicly available, but Microsoft has received information that this vulnerability is being exploited. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows ...

A new vulnerability was discovered in Microsoft Internet Explorer, which could be exploited by a remote attacker to crash the user's web browser or execute arbitrary commands under the rights of the current user. This vulnerability can be exploited via a malicious Web page to compromise and take complete control of a vulnerable system. Currently, there is no available patch for this vulnerability. An exploit for this vulnerability has been made available to the public. (See http://www.frsirt.com/exploits/20050702.iejavaprxyexploit.pl.php). This exploit was researched and tested by CSCIC. CSCIC was able to successfully exploit a Windows XP (SP2) host with Internet Explorer 6.0. SYSTEMS ...

Veritas Backup Exec is network-based enterprise backup software for Novell Netware and Microsoft Windows. Last week vulnerabilities were reported in some versions of this product that can allow a remote attacker to launch a Denial of Service (DoS) against or execute arbitrary code on systems running this software. Users of affected software packages are urged to employ the recommendations noted below to protect their systems from attacks targeting this vulnerability. At that time, there were no known exploits or any active scanning for the vulnerabilities, therefore no advisory was warranted. However this week exploits for at least one of the vulnerabilities ...

A new variant of the W32.Sober is responsible for a substantial increase in spam over the past few days. This variant can randomly generate several different email messages, either in English or German depending on the version of Windows running on infected computers. The content of the messages contains or points to political statements and in some instance may refer to the bombings by the allies during World War II. Several NYS agencies and one other state have reported receiving a large number of emails from outside their networks as a result of the virus. In some cases the volume of ...

On April 12, 2005 Microsoft reported multiple vulnerabilities that if exploited by an attacker could result in a denial of service or in some cases give an attacker the ability to cause a compromised system to remotely execute code. By exploiting these vulnerabilities, an attacker could degrade performance or install programs; view, change, or delete data; or create new accounts with full user privileges. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 Microsoft Windows XP 64-Bit Edition Service Pack 1 (Itanium) ...

On April 12, 2005 Microsoft reported a vulnerability in several versions of Microsoft Exchange Server. An attacker can send a special request to a vulnerable Microsoft mail server to exploit this vulnerability and execute remote code on the compromised system as well as cause a denial of service. Microsoft Exchange Server 2000 is particularly vulnerable as it does not require a user to authenticate before launching an attack. SYSTEMS AFFECTED: Microsoft Exchange Server 2000 Microsoft Exchange Server 2003 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities:High Small business entities:High Home users: Not Applicable ...

On August 18, 2003 Oracle reported a vulnerability affecting a component of Oracle9i Database Server. On March 18, 2005, code to exploit this vulnerability was publicly released on the Internet. On March 30th, CSCIC received information that, beginning March 19th, Internet activity targeting this vulnerability commenced. A remote attacker could exploit the vulnerability and cause a Denial of Service attack against the server and/or a have the ability to capture an active user(s) session which could potentially compromise data. SYSTEMS AFFECTED: Oracle9i Enterprise Edition 9.2 .0.1 Oracle9i Personal Edition 9.2 .0.1 Oracle9i Standard Edition 9.2 .0.1 ...

This new variant of MyDoom is very similar to the previous versions of this worm. It is a mass-mailing worm that requires user intervention to infect a machine. A user must open an infected email attachment that contains the malicious code. If executed, the worm scans the victim’s computer for email addresses and uses its own email engine to send copies of itself to the harvested addresses. A backdoor Trojan is also installed on the victim’s machine, which listens for commands from a remote attacker. It also uses file sharing networks as a propagation method. Antivirus firms have reported a ...

Two new variants of the Beagle/Bagle worm (Beagle.AZ/Bagle.bk and Beagle.BA/Bagle.bl) are being reported by anti-virus vendors. These Beagle/Bagle variants are mass mailing worms which spread via their own email engine or spread via file sharing networks. Both attempt to lower security settings and download remote files from various websites and save it as %System%\re_file.exe One variant, Beagle.AZ/ Bagle.bk, has been raised to a medium threat level by anti-virus vendors due to the high volume of reported infections to anti-virus vendors. The other variant, Beagle.BA/Bagle.bl, is at a low threat level. These variants are a concern because of the volume ...

Veritas Backup Exec is a network enabled application available for the Novell Netware and Microsoft Windows operating systems which backups your data. A vulnerability exists in some versions of this product that can allow a remote attacker the ability to gain unauthorized administrator access to systems running this software. There have been reports of significant increased scanning for the default port used by Backup Exec. SANS reports “seeing indications of active (i.e. non-worm) exploitation of Backup Exec systems”. Users of affected software packages are urged to employ the recommendations noted below to protect their systems from attacks targeting this ...

Department of Homeland Security (DHS) Secretary Janet Napolitano today announced the launch of a new online public engagement tool designed to solicit input from the public on ways to enhance transparency, participation, collaboration and innovation at the Department—part of President Obama's Open Government Directive.

Secretary Napolitano announced more than $23 million in Fire Station Construction Grants (SCG) funded by the American Recovery and Reinvestment Act (ARRA)—designed to support the nation's first responders while creating jobs and stimulating local economies.

Secretary Janet Napolitano and the Honorable Vic Toews, Canadian Minister of Public Safety, today announced a new Shiprider pilot project designed to bolster cross-border security operations in the waters of Puget Sound and off the Pacific Coast before and during the 2010 Winter Games in Vancouver. The project enables the Royal Canadian Mounted Police (RCMP) and the U.S. Coast Guard to cross-train, share resources and personnel and utilize each others' vessels in the waters of both countries.

Transcript of Background Call with Senior DHS Officials on the Department's Fiscal Year 2011 Budget Proposal was held February 1, 2010 in Washington, D.C.

Homeland Security Secretary Napolitano met Feb. 1 with federal, state and local law enforcement officials and private sector stakeholders in South Florida to discuss port security, including passenger and cargo screening procedures.

Department of Homeland Security Secretary Janet Napolitano unveiled the Department's $56.3 billion fiscal year 2011 budget request today—prioritizing efforts to enhance security measures that protect against terrorism and other threats and reflecting the Department's commitment to fiscal discipline and efficiency.

Secretary Napolitano Announces Fiscal Year 2011 Budget Request

Secretary Napolitano met with leaders from Muslim, Sikh, South Asian and Arab communities—key partners in homeland security that contribute to many different parts of American life and exemplify the diversity that is a hallmark of our country—to discuss ways the Department can increase engagement, dialogue and coordination, and enhance information sharing between DHS and faith- and community-based groups.

Homeland Security Deputy Secretary Jane Holl Lute, the Honourable Vic Toews, Minister of Public Safety, and John Baird, Canada's Transport Minister met January 28 to bolster cooperation and coordination between the United States and Canada on aviation security measures and standards

The Department of Homeland Security (DHS) continues to support U.S. government efforts—led by the U.S. Agency for International Development (USAID) and the State Department—by deploying more than 1,000 personnel to provide operational and humanitarian assistance in Haiti following the Jan. 12 earthquake. On Jan. 25, DHS stood up pre-departure identity verification teams in Haiti, comprised of U.S. Customs and Border Protection (CBP), U.S. Immigration and Customs Enforcement (ICE) and Transportation Security Administration (TSA) officials, to streamline and expedite the evacuation process.

Department of Homeland Security (DHS) Secretary Janet Napolitano announced that U.S. Customs and Border Protection (CBP) has begun enforcement of the Importer Security Filing and Additional Carrier Requirements interim final rule—significantly increasing the scope and accuracy of information gathered on shipments of cargo arriving by sea into the United States and bolstering DHS' layered enforcement strategy to protect against terrorism and other crimes at U.S. ports of entry.

Secretary Napolitano highlights aviation security in a press briefing.

Secretary Janet Napolitano met with members of the International Air Transport Association (IATA)—which represents approximately 230 airlines and more than 90 percent of the world's air traffic—in Geneva as part of the Department's ongoing efforts to work with the airline industry to meet both international and U.S. Transportation Security Administration (TSA) security standards.

Secretary Napolitano designated 11 new countries as eligible to participate in the H-2A and H-2B nonimmigrant visa programs, which allow U.S. employers to bring foreign nationals to the United States to fill temporary or seasonal jobs for which U.S. workers are not available.

The Ministers of the Member States of the European Union, together with the Vice President of the European Commission and the Secretary of the Department of Homeland Security of the United States of America, meeting informally in Toledo, (Spain), have discussed current terrorists threats, in particular the attempted attack on an aircraft approaching Detroit on 25th December 2009, ways to strengthen international security measures and standards for aviation security, and an upcoming global dialogue on securing international travel.

Homeland Security Secretary Napolitano traveled to Toledo, Spain, at the invitation of her Spanish colleague, Interior Minister Alfredo Rubalcaba, to meet with her European counterparts regarding ways to bolster international aviation security measures and standards.

The Written Testimony of Secretary Napolitano before the Senate Committee on the Homeland Security and Governmental Affairs, "Intelligence Reform: The Lessons and Implications of the Christmas Day Attack."

Department of Homeland Security (DHS) Secretary Janet Napolitano today authorized the temporary activation of up to 900 reserve U.S. Coast Guard service men and women to bolster the more than 500 Coast Guard personnel already serving in Haiti in support of the U.S. government's response to the devastation caused by the Jan. 12 earthquake.