Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

VULNERABILITIES - December 15, 2005

by roddy32 Dec 14, 2005 8:20PM PST

TITLE:
Trend Micro PC-cillin Internet Security Insecure File Permission

SECUNIA ADVISORY ID:
SA18044

VERIFY ADVISORY:
http://secunia.com/advisories/18044/

CRITICAL:
Less critical

IMPACT:
Security Bypass, Privilege escalation

WHERE:
Local system

SOFTWARE:
Trend Micro PC-cillin Internet Security 2005
http://secunia.com/product/4708/

DESCRIPTION:
A security issue has been reported in Trend Micro PC-cillin Internet
Security, which can be exploited by malicious, local users to bypass
certain security restrictions or gain escalated privileges.

The vulnerability is caused due to insecure default file permissions
being set on the installed files. This allows any user on the system
to remove the files or replace them with malicious binaries.

Successful exploitation allows disabling the protection or execution
of arbitrary code with SYSTEM privileges.

The security issue has been reported in Trend Micro PC-cillin
Internet Security 2005 version 12.00 build 1244. Other versions may
also be affected.

SOLUTION:
The security issue has reportedly been fixed in version 12.4.

PROVIDED AND/OR DISCOVERED BY:
Discovered by anonymous and reported via iDEFENSE.

ORIGINAL ADVISORY:
iDEFENSE:
http://www.idefense.com/application/poi/display?id=351&type=vulnerabilities

Discussion is locked

2 Posts
- Collapse + Expand Details
- Collapse -
Apple QuickTime Unspecified Heap Overflow May Let Remote
by Donna Buenaventura Dec 15, 2005 1:20AM PST

Users Execute Arbitrary Code

Affected Version(s): 7.0.3

Description: A vulnerability was reported in Apple QuickTime. A remote user may be able to execute arbitrary code on the target system.
A user can trigger a heap overflow in the player and potentially execute arbitrary code on the target system. No details were provided pending vendor resolution.

iTunes 6.0.1 is also affected. The vendor has been notified.

badpack3t of Security-Protocols.com reported this vulnerability.

The original advisory is available at:
http://www.security-protocols.com/modules.php?name=News&file=article&sid=3109

Impact: A remote user may be able to cause arbitrary code to be executed on the target user's system.

Solution: No solution was available at the time of this entry.

http://securitytracker.com/alerts/2005/Dec/1015356.html

- Collapse -
PGP Desktop Wipe Free Space Flaw
by Donna Buenaventura Dec 15, 2005 1:24AM PST

"PGP Desktop Professional provides comprehensive security for individual desktops, making it possible for organizations to protect sensitive information for a single person without changing the existing IT infrastructure or disrupting work processes."

PGP Wipe does not clean the file's slacks on NTFS partition, allowing recovery of deleted data.

Vulnerable Systems:
* PGP Desktop Professional version 9.0.3 Build 2932
* PGP Desktop version 8.x (all versions tested were vulnerable)

Vendor Status:
PGP has been notified of this issue on multiple occasions, but has chosen not to respond.

http://www.securiteam.com/windowsntfocus/6P00H0UEUE.html

Back to Spyware, Viruses, & Security forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info