Spyware, Viruses, & Security forum

General discussion

VULNERABILITIES - April 5, 2005

by roddy32 / April 4, 2005 10:08 PM PDT

TITLE:
Netscape JavaScript Engine Information Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA14804

VERIFY ADVISORY:
http://secunia.com/advisories/14804/

CRITICAL:
Moderately critical

IMPACT:
Exposure of system information, Exposure of sensitive information

WHERE:
From remote

SOFTWARE:
Netscape 6.x
http://secunia.com/product/84/
Netscape 7.x
http://secunia.com/product/85/

DESCRIPTION:
A vulnerability has been discovered in Netscape, which can be
exploited by malicious people to gain knowledge of potentially
sensitive information.

For more information:
SA14820

The vulnerability has been confirmed in version 7.2. Other versions
may also be affected.

SOLUTION:
Disable JavaScript support.

OTHER REFERENCES:
SA14820:
http://secunia.com/advisories/14820/

Discussion is locked
You are posting a reply to: VULNERABILITIES - April 5, 2005
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: VULNERABILITIES - April 5, 2005
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Windows Server 2003 Local Denial of Service Vulnerabilities
by roddy32 / April 5, 2005 2:53 AM PDT

TITLE:
Windows Server 2003 Local Denial of Service Vulnerabilities

SECUNIA ADVISORY ID:
SA14808

VERIFY ADVISORY:
http://secunia.com/advisories/14808/

CRITICAL:
Not critical

IMPACT:
DoS

WHERE:
Local system

OPERATING SYSTEM:
Microsoft Windows Server 2003 Datacenter Edition
http://secunia.com/product/1175/
Microsoft Windows Server 2003 Enterprise Edition
http://secunia.com/product/1174/
Microsoft Windows Server 2003 Standard Edition
http://secunia.com/product/1173/
Microsoft Windows Server 2003 Web Edition
http://secunia.com/product/1176/

DESCRIPTION:
Two vulnerabilities have been reported in Microsoft Windows Server
2003, which can be exploited by malicious, local users to cause a DoS
(Denial of Service).

1) The vulnerability is caused due to an error when the SMB
redirector receives a browser announcement frame and subsequently
tries to run code that is paged out. This can be exploited to cause
the system to crash by e.g. retrieving a large file from a network
share when the system is under heavy load.

2) The vulnerability is caused due to an error where the printer
driver under certain circumstances passes an invalid color adjustment
object to Windows Server 2003. This can be exploited to cause the
system to crash by a user through a terminal service session, where
the user opens a Microsoft Word message in Microsoft Outlook and then
prints the message to a network printer.

SOLUTION:
These issues have been resolved in Service Pack 1 for Windows Server
2003.

Windows Server 2003 SP1 (32-bit):
http://www.microsoft.com/downloads/details.aspx?FamilyId=22CFC239-337C-4D81-8354-72593B1C1F43

Windows Server 2003 SP1 (Itanium):
http://www.microsoft.com/downloads/details.aspx?FamilyId=890C5C44-815C-45BD-8B08-4FE901BB8FDF

PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.

ORIGINAL ADVISORY:
Windows Server 2003 Service Pack 1:
http://support.microsoft.com/kb/824721/

SMB redirector DoS:
http://support.microsoft.com/kb/890554/

Printer driver DoS:
http://support.microsoft.com/kb/829422/

Collapse -
Explorer.exe WMF Parsing Causes a DoS
by Donna Buenaventura / April 5, 2005 3:02 AM PDT

Microsoft Windows Metafile Format (WMF) files are used to store both vector and bitmap-format graphical data in memory or in disk files. The vector data stored in WMF files is described as Microsoft Windows Graphics Device Interface (GDI) commands. In the Window environment these commands are interpreted and played back on an output device using the Windows API PlayMetaFile() function. Bitmap data stored in a WMF file may be stored in the form of a Microsoft Device Dependent Bitmap (DDB), or Device Independent Bitmap (DIB).

Crafted .WMF file cause Explorer.exe to use 100% of CPU and can cause the system to hang until the Explorer.exe process is killed.

Vulnerable Systems:
* Microsoft Windows XP SP1. Other versions may be vulnerable as well.

http://www.securiteam.com/windowsntfocus/5CP081FFFY.html

Collapse -
Red Hat - Three Security Advisories
by Donna Buenaventura / April 5, 2005 3:20 AM PDT

Title: Red Hat - Three Security Advisories: 1. Low: curl security update RHSA-2005:0340-1] - 2. Important: gdk-pixbuf security update [RHSA-2005:0343-1] - 3. Important: mysql-server security update [RHSA-2005:0348-1]

Abstract: 1. Multiple buffer overflow bugs were found in the way curl processes base64 encoded replies. If a victim can be tricked into visiting a URL with curl, a malicious web server could execute arbitrary code on a victim's machine. - 2. A bug was found in the way gdk-pixbuf processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack on applications linked against gdk-pixbuf. - 3. This update fixes several security risks in the MySQL server.

Vendors affected: Red Hat

Operating Systems affected: Linux

Applications/Services affected: curl, gdk-pixbuf, mysql-server

Complete details in http://www.uniras.gov.uk/niscc/docs/br-20050405-00285.html?lang=en

Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

Does BMW or Volvo do it best?

Pint-size luxury and funky style

Shopping for a new car this weekend? See how the BMW X2 stacks up against the Volvo XC40 in our side-by-side comparison.