- New vulnerabilities in IBM Lotus Notes -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)
Madrid, September 11, 2006 - Two new vulnerabilities have been reported
in IBM Lotus Notes. The first of these allows erroneous sending of
emails, while the second could allow remote execution of code.
The first of these problems occurs when a user response to an email
message in which identical user names have been included in the "To:"
and "Cc:" fields, which could mean that the values in the AltCopyTo and
INetCopyTo fields are out of sync with the CopyTo field. As a result,
messages could be incorrectly addressed.
This only occurs if the "Default display name" preference is configured
to "Display alternate names."
IBM will shortly release updates to prevent the problem in versions 6.5x
and 7.0x. Until then, the IBM advisory, at
a workaround to correct the affected template.
In the second problem in IBM Lotus Notes, consisting of remote execution
of arbitrary code, lies in a buffer overflow in dunzip32.dll, when a
specially modified zip file is processed.
The IBM advisory and the necessary updates are available at
Firefox Sage Extension RSS Feed Script Insertion Vulnerability
SECUNIA ADVISORY ID:
Cross Site Scripting
Sage 1.x (extension for Firefox)
pdp has discovered a vulnerability in the Sage extension for Firefox,
which can be exploited by malicious people to conduct cross-site
The vulnerability is caused due to an input validation error in the
processing of the content tag in RSS feeds. This can be exploited to
inject and execute arbitrary HTML and script code in a local context
by tricking a user into adding a malicious RSS feed and then viewing
the content of it.
The vulnerability has been confirmed in version 1.3.6. Other versions
may also be affected.
Do not add RSS feeds from untrusted sources.
PROVIDED AND/OR DISCOVERED BY: