Welcome to the California Office of Information Security

Vulnerability Summary for the Week of December 29, 2008

Vulnerability Summary for the Week of December 22, 2008

Vulnerability Summary for the Week of December 15, 2008

Microsoft Internet Explorer Data Binding Vulnerability

Microsoft Internet Explorer Data Binding Vulnerability

Apple

Apple

Vulnerability Summary for the Week of December 8, 2008

Microsoft Updates for Multiple Vulnerabilities

Microsoft Updates for Multiple Vulnerabilities

ORIGINAL OVERVIEW: A vulnerability has been identified in Microsoft Windows Media Player. Windows Media Player is a digital media player and media library application that is used for playing audio, video, and viewing images. This application is installed by default on all versions of Windows and is often set as the default media player. Exploitation can occur if a user visits a specially crafted webpage or opens a malicious media file which takes advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. The attacker could then potentially access sensitive ...

OVERVIEW: A vulnerability has been identified in Microsoft Windows Media Player. Windows Media Player is a digital media player and media library application that is used for playing audio, video, and viewing images. This application is installed by default on all versions of Windows and is often set as the default media player. Exploitation can occur if a user visits a specially crafted webpage or opens a malicious media file which takes advantage of this vulnerability. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. The attacker could then potentially access sensitive or ...

ORIGINAL OVERVIEW: A vulnerability has been discovered in Microsoft SQL Server. Successful exploitation will result in an attacker gaining the same privileges as the MS SQL Server process. The attacker could then potentially access sensitive or confidential information, install programs, view, change, or delete data, or create new accounts. There is no patch available at this time. UPDATED OVERVIEW: There are currently no reports of active exploits. However, proof of concept code for this vulnerability has been publicly released and verified in our lab. There is still no patch available at this time. ORIGINAL SYSTEMS AFFECTED: ...

ORIGINAL OVERVIEW: A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be ...

ORIGINAL OVERVIEW: A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be noted ...

OVERVIEW: Eight vulnerabilities have been discovered in Microsoft Office Word. These vulnerabilities can be exploited if a user opens a specially crafted document in Rich Text Format (RTF) or Word file, or views or previews a specially crafted email sent in RTF format on a system where Word is the default editor. It should be noted that Word is the default email editor for Microsoft Office. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, the attacker could then install programs; view, change, or ...

OVERVIEW: A new vulnerability has been discovered in the Microsoft Windows WordPad Text Converter for the Word 97 file format that would allow a remote attacker to take complete control of the vulnerable system. The WordPad Text Converter is a component that is installed by default that allows some applications to open Word documents if Word is not installed. This vulnerability can be exploited when a user opens a specially crafted Word 97 file using WordPad. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an ...

OVERVIEW: A vulnerability has been discovered in Microsoft Internet Explorer 7 (IE 7) which could allow an attacker to take complete control of an affected system. Exploitation can occur if a user visits a webpage specifically crafted to take advantage of this vulnerability. Successful exploitation may result in an attacker gaining complete control of the affected system. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may cause Internet Explorer 7 to crash. It should be noted that this ...

OVERVIEW: A vulnerability has been discovered in Microsoft SQL Server. Successful exploitation will result in an attacker gaining the same privileges as the MS SQL Server process. The attacker could then potentially access sensitive or confidential information, install programs, view, change, or delete data, or create new accounts. There is no patch available at this time. SYSTEMS AFFECTED: Microsoft SQL Server 2000 Microsoft SQL Server 2005 RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small business entities: High Home users: Low DESCRIPTION: Microsoft SQL ...

OVERVIEW: Four vulnerabilities have been discovered in Microsoft's browser, Internet Explorer, which could allow an attacker to take complete control of an affected system. Exploitation may occur if a user visits a web page which is specifically crafted to take advantage of these announced vulnerabilities. Successful exploitation could result in an attacker gaining the same privileges as the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS ...

OVERVIEW: Two vulnerabilities have been discovered in the Microsoft Graphics Device Interface (GDI). Microsoft Windows Graphic Device Interface (GDI) enables various applications to access devices which render images, such as desktop displays and printers, for the user. GDI is installed by default on all Microsoft Windows operating systems. These vulnerabilities can be exploited if a user views a malicious web page; views or previews an email message; or opens an email attachment containing a specially crafted image file designed to exploit one of the vulnerabilities. Successful exploitation will result in an attacker gaining the same privileges as the logged ...

OVERVIEW: Six vulnerabilities have been discovered in the ActiveX controls for the Microsoft Visual Basic 6.0 Runtime Extended Files. The Visual Basic 6.0 Runtime Extended Files include select ActiveX controls, libraries, and tools that are delivered with a variety of Microsoft products, such as Microsoft Project, Visual Studio, FoxPro, and FrontPage, as well as third party and custom written software. The identified vulnerabilities may be exploited if a user visits a specially crafted web page or opens a specially crafted HTML formatted email, which could allow an attacker to take complete control of an affected system. For all of ...

OVERVIEW: Multiple vulnerabilities have been discovered in the Sun Java Web Start and Java Plug-in that could allow a remote attacker to take control of a vulnerable system. Sun Java Web Start is a tool in the Java Runtime Environment (JRE) common to virtually all desktop environments. JRE allows java applications to launch either from a desktop or within a web page. These vulnerabilities can be exploited when a user visits a web site that contains a malicious script code. Successful exploitation may allow attackers to access sensitive information, bypass security restrictions, or read, write and execute arbitrary files ...

OVERVIEW: Three vulnerabilities have been discovered in Microsoft XML Core Services (MSXML). This is a set of services which is installed by default on all Windows systems, and is used to enhance the user experience on web pages. The identified vulnerabilities may be exploited if a user visits a specifically crafted web page or opens a specially crafted HTML formatted email which could allow an attacker to take complete control of an affected system. For one of the vulnerabilities, successful exploits will result in an attacker gaining the same privileges as the logged on user. If the user is ...

OVERVIEW: Several security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. These vulnerabilities can be exploited if a user opens a malicious PDF file. Successful exploitation will result in an attacker gaining complete control of the affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. UPDATED OVERVIEW: It has been reported that one of the vulnerabilities is actively being exploited on ...

OVERVIEW: Several security vulnerabilities have been identified in Adobe Flash Player. Adobe Flash Player is a widely distributed multimedia and application player for Microsoft Windows, Mozilla, and Apple technologies. It is used to enhance the user experience when visiting web pages or reading email messages. These vulnerabilities can be exploited if a user views a malicious webpage or opens a malicious Shockwave Flash (SWF) or Java Archive (JAR) file. Successful exploitation may result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then ...

OVERVIEW: Several security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. These vulnerabilities can be exploited if a user opens a malicious PDF file. Successful exploitation will result in an attacker gaining complete control of the affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Adobe Acrobat Reader 8.1.2 and earlier Adobe Acrobat Standard/Professional/3D 8.1.2 and earlier ...

OVERVIEW: A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server Service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted Remote Procedure Call (RPC) request over the Internet or an internal network. RPC is a protocol that a program can use to request a service from a program located on another computer in a ...

OVERVIEW: A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server Service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted Remote Procedure Call (RPC) request over the Internet or an internal network. RPC is a protocol that a program can use to request a service from a program located on another computer in a network. ...

OVERVIEW: A vulnerability has been identified in Active Directory that could allow an attacker to remotely execute arbitrary code. Active Directory is a Microsoft technology that enables authentication (logging on) and access to resources (directories) on a network. This vulnerability may be exploited by a specially crafted request targeting a vulnerable Windows 2000 Server Domain Controller. Successful exploitation will result in an attacker gaining complete control of the affected system and could lead to the compromise of any other system that is part of the affected domain. An attacker could then install programs; view, change, or delete data; or ...

OVERVIEW: A remote code execution vulnerability exists in the Microsoft Server Message Block (SMB) Protocol. SMB is used mainly to provide shared access to files, printers, serial ports and miscellaneous communications between computers on a network. Successful exploitation will result in an attacker gaining complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. SYSTEMS AFFECTED: Windows 2000 Windows XP Windows 2003 Windows Vista Windows 2008 RISK: Government: Large and medium government entities: High Small government entities: High ...

OVERVIEW: Six vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities may be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts may result in a denial-of-service condition. SYSTEMS AFFECTED: Internet Explorer 5.01 Internet ...

OVERVIEW: Five vulnerabilities have been discovered in the Microsoft Graphics Device Interface (GDI+), which is found in all Windows operating systems. This could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit one of the vulnerabilities. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged on with administrator privileges, the attacker could then install programs; view, change, or delete data; ...

OVERVIEW: A vulnerability has been discovered in Microsoft Word that may allow an attacker to remotely execute arbitrary code in the context of the user. The vulnerability can be exploited using a specially crafted Word document that causes a memory handling error. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. This vulnerability is reportedly being actively exploited on the Internet. SYSTEMS AFFECTED: ...

ORIGINAL OVERVIEW: A new vulnerability has been discovered in the Microsoft Access Snapshot Viewer ActiveX Control. The Snapshot Viewer enables you to view a report generated with a database product, Microsoft Access, without requiring the product to be installed on the user's computer. Microsoft Access Snapshot Viewer is included with most installations of Microsoft Office. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. The vulnerability can be exploited through a specially crafted web page that uses the vulnerable ActiveX control. Successful exploitation will result in ...

OVERVIEW: Six vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities may be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 Microsoft Internet ...

OVERVIEW: A vulnerability has been discovered in the way Microsoft Windows handles images. This vulnerability can be exploited if a user views a malicious image file. The primary vectors for making malicious image content available include web pages, as well as email, instant messaging (IM), and documents. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges.   SYSTEMS AFFECTED: Windows 2000 SP4 Windows ...

ORIGINAL OVERVIEW: Domain Name System (DNS) is an essential core service that translates a name, such as a web site or email address, to a numeric address which is needed for computers to communicate. Two vulnerabilities have been discovered in multiple vendors' DNS implementations that may allow an attacker to redirect users, without their knowledge, from trusted web sites to a malicious web site. Affected vendors include Microsoft, Cisco, Juniper, and Internet Systems Consortium (ISC). Be advised that this may not be a complete list. UPDATED OVERVIEW: Technical details about how to exploit these vulnerabilities have been ...

OVERVIEW: A new vulnerability has been discovered in the Microsoft Access Snapshot Viewer ActiveX Control. The Snapshot Viewer enables you to view a report generated with a database product, Microsoft Access, without requiring the product to be installed on the user's computer. Microsoft Access Snapshot Viewer is included with most installations of Microsoft Office. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. The vulnerability can be exploited through a specially crafted web page that uses the vulnerable ActiveX control. Successful exploitation will result in an ...

OVERVIEW: Domain Name System (DNS) is an essential core service that translates a name, such as a web site or email address, to a numeric address which is needed for computers to communicate. Two vulnerabilities have been discovered in multiple vendors' DNS implementations that may allow an attacker to redirect users, without their knowledge, from trusted web sites to a malicious web site. Affected vendors include Microsoft, Cisco, Juniper, and Internet Systems Consortium (ISC). Be advised that this may not be a complete list. SYSTEMS AFFECTED: Microsoft Windows 2000 Server SP4 Microsoft XP Service Pack 2 Microsoft XP ...

OVERVIEW: A new vulnerability has been identified in Novell eDirectory that allows attackers to execute arbitrary code on affected systems. Novell eDirectory is an identity management and directory service application. Novell eDirectory, generally found in medium to large organizations, is commonly deployed as an internal directory and resource manager. eDirectory was formerly known as Novell Directory Services (NDS). If successfully exploited, this vulnerability could allow an attacker to take control of an affected system with the same privileges as the eDirectory process. This would typically allow the attacker to install programs, view, change, or delete data, or create new ...

OVERVIEW: A new vulnerability has been discovered in the Adobe Acrobat and Adobe Reader applications that allows attackers to execute arbitrary code on the affected systems. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. If successfully exploited, this vulnerability could allow an attacker to take complete control of an affected system resulting in the attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete ...

OVERVIEW: Two vulnerabilities have been discovered in Microsoft Internet Explorer. These vulnerabilities may be exploited if a user visits a web site specifically designed to exploit these vulnerabilities or by visiting a trusted web site unwittingly hosting malicious content. If successfully exploited, these vulnerabilities could allow an attacker to take complete control of an affected system resulting in the attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result ...

OVERVIEW: Two vulnerabilities have been discovered in Microsoft DirectX which could allow a remote attacker to take complete control of an affected system. DirectX is Microsoft software that adds enhanced multimedia functionality. These vulnerabilities can be exploited if a user opens an email attachment containing a malicious media file or visits a web site hosting malicious media files. Successful exploitation of these vulnerabilities will allow an attacker to gain the same rights as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts ...

OVERVIEW: IBM Lotus Domino is a web server application used to host web sites. A vulnerability has been discovered in the IBM Lotus Domino Web Server that could allow a remote attacker to take complete control of the system. Successful exploitation of this vulnerability will allow an attacker to inject malicious code into the application, thereby allowing the attacker to take control of a vulnerable system and perform actions such as install programs, view, change, and delete data, and create user accounts. Failed exploits could lead to a denial of service condition. SYSTEMS AFFECTED: IBM Lotus Domino 6.0.0 ...

OVERVIEW: A vulnerability has been discovered in the Microsoft Jet Database Engine that could allow a remote attacker to take complete control of an affected system. Please note that this vulnerability is being actively exploited. The Microsoft Jet Database Engine allows programs to access information in a Microsoft database. This vulnerability can be exploited if a user opens a malicious Word file. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. ...

OVERVIEW: Two new vulnerabilities have been discovered in Microsoft Word which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by viewing or previewing malicious Rich Text Format (RTF) email messages or opening Word file attachments. RTF email messages usually contain special formatting, colors and font. Successful exploitation will result in an attacker gaining the same privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. SYSTEMS AFFECTED: ...

ORIGINAL OVERVIEW: A vulnerability in the Novell GroupWise System (Novell's Email system) has been identified. Successful exploitation of this vulnerability will allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This could lead to complete control of the compromised system. UPDATED OVERVIEW: Novell has confirmed that this vulnerability only affects GroupWise 7.0.0. ...

OVERVIEW: A vulnerability in the Novell GroupWise System (Novell's Email system) has been identified. Successful exploitation of this vulnerability will allow an attacker to execute arbitrary code in the context of the application. This can result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This could lead to complete control of the compromised system. SYSTEMS AFFECTED: Novell Groupwise 7.0.0 Novell Groupwise 7.0.0 SP1 Novell Groupwise ...

ORIGINAL OVERVIEW: A vulnerability has been discovered in the way Microsoft Windows processes certain image files. This vulnerability can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit this vulnerability. This vulnerability may be exploited through other software applications which use the vulnerable Microsoft component. A successful exploit may result in the attacker taking complete control of the affected system. UPDATED OVERVIEW: Symantec DeepSight Threat Management System has reported that this vulnerability is being actively exploited on the Internet. SYSTEMS AFFECTED: Microsoft Windows ...

OVERVIEW: Adobe Flash Player is a widely distributed multimedia and application player. It is used to enhance the user experience when visiting web pages or reading email messages. Adobe has released a Flash Player update that addresses multiple vulnerabilities. The most important of these vulnerabilities pertains to the way Flash files are handled and can result in the execution of attacker supplied code. This particular vulnerability can be exploited if a user visits a webpage or opens email with an embedded malicious file. A successful exploit may result in the execution of malicious code with the same system level privileges ...

OVERVIEW: Microsoft has released a security update which addresses a vulnerability discovered in one Microsoft ActiveX control. ActiveX controls are small programs or animations that are downloaded or embedded in Web pages which will typically enhance functionality and user experience. Many web design and development tools have built ActiveX support into their products, allowing developers to both create and make use of ActiveX controls in their programs. There are more than 1,000 existing ActiveX controls available for use today. When vulnerabilities are discovered in ActiveX controls, attackers may use specially crafted web pages to exploit these vulnerabilities. Successful exploitation will ...

OVERVIEW: A vulnerability has been discovered in the way Microsoft Windows processes certain image files. This vulnerability can be exploited if a user views a malicious web page or opens an email attachment containing an image file specially designed to exploit this vulnerability. This vulnerability may be exploited through other software applications which use the vulnerable Microsoft component. A successful exploit may result in the attacker taking complete control of the affected system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows XP Professional ...

OVERVIEW:To enhance the user experience when visiting web sites, web pages may use applications developed with a programming language called VBScript or JScript. A vulnerability exists in the way VBScript and JScript render web pages which, if exploited, could allow a remote attacker to take complete control of an affected system. This vulnerability can be exploited if a user visits a specifically crafted web page or e-mail that contains a specially crafted script. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, ...

OVERVIEW: A vulnerability in Microsoft Internet Explorer could allow an attacker to take complete control of an affected system. The vulnerability may be exploited if a user visits a specifically crafted web page or receives an email with specifically crafted content. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet ...

ORIGINAL OVERVIEW: Seven new vulnerabilities have been discovered in versions of Microsoft Office Excel which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by opening malicious Excel document (.XLS) email attachments or by visiting Web sites that host malicious Excel documents. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. The update ...

OVERVIEW: A number of new vulnerabilities have been discovered in Microsoft Office. These issues may allow an attacker to take complete control of an affected system. The vulnerabilities can be exploited if a user visits a specifically crafted web page, or by opening a malicious Microsoft Office file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft Office ...

OVERVIEW: Seven new vulnerabilities have been discovered in versions of Microsoft Office Excel which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited by opening malicious Excel document (.XLS) email attachments or by visiting Web sites that host malicious Excel documents. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. The update released ...

OVERVIEW: Two vulnerabilities have been discovered in Microsoft Office Web Components which could allow a remote attacker to take complete control of an affected system. The vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: Microsoft Office 2000 Service Pack 3 Microsoft Office XP Service Pack 3 ...

OVERVIEW: To enhance the user experience when visiting web sites, web pages sometimes use applications developed with the programming language called Java. A vulnerability has been discovered in the way Java (Java Runtime Environment) processes images. This vulnerability could allow a remote attacker to run arbitrary code with the same privileges of the user running the affected application. This vulnerability can be exploited when a user visits a web site that contains a specially-crafted and malicious image file. Examples of file types that could be used to exploit this vulnerability include JPG and BMP. Exploit code is publicly ...

OVERVIEW: A new vulnerability has been discovered in Microsoft Windows Operating systems which could allow an attacker to take complete control of the affected system. The vulnerable component (WebDAV Mini-Redirector) is enabled by default on all Microsoft Windows Operating Systems except Windows Server 2003. This vulnerability can be exploited if a user visits a malicious web site which sends back a specially-formatted web response. Successful exploitation will result in an attacker gaining administrator-level privileges on a vulnerable computer; the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. SYSTEMS ...

OVERVIEW: Several new security vulnerabilities have been identified in Adobe Reader and Adobe Acrobat. Adobe Reader allows users to view Portable Document Format (PDF) files. Adobe Acrobat offers users additional features such as the ability to create PDF files. The default installation of both products includes the Adobe Reader Plugin, which allows users to view PDF files within a web browser such as Internet Explorer or Firefox. These vulnerabilities can be exploited if a user views a malicious PDF file in a web browser or attempts to open a malicious PDF file which has been downloaded or received as ...

OVERVIEW: This advisory only pertains to organizations that use Novell Netware for local area network services. Novell Netware provides services such as browsing or accessing NetWare directories, transfering or sharing files and printing services. A vulnerability has been discovered in the Novell Netware Client software which is run on an end user's computer. This vulnerability will allow an attacker to execute arbitrary code on the affected system. If successfully exploited, the attacker could gain system level privileges and install programs, view, change, or delete data, or create new accounts. Unsuccessful attempts to exploit this vulnerability will likely result in ...

OVERVIEW: A new vulnerability has been discovered in Microsoft Windows Operating system which could allow an attacker to take complete control of the affected system. The vulnerability can be exploited if a user visits a specifically crafted web page, views a malicious HTML email message, or opens a malicious Microsoft Office file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full privileges. SYSTEMS AFFECTED: ...

OVERVIEW: Four vulnerabilities have been discovered in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Failed exploit attempts will result in a denial-of-service condition. SYSTEMS AFFECTED: Microsoft Internet Explorer 5.01 for ...

OVERVIEW: A new vulnerability has been discovered in certain versions Microsoft Office Excel, software that processes spreadsheets. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. This vulnerability can be exploited by opening a malicious Excel spreadsheet (.XLS) which was emailed as an attachment, or by visiting a Web site that is hosting a malicious Excel spreadsheet. At this time, Microsoft has confirmed this ...

OVERVIEW: Many websites employ 3D animation or movies using Shockwave Flash (SWF) files to enhance the user experience when visiting web sites. If your website is hosting a SWF file, it may be used by attackers to exploit users visiting the website, giving the attacker complete control over the user's session. A book, Hacking Exposed: Web 2.0, Web 2.0 Security Secrets and Solutions, detailing these vulnerabilities was recently published. SYSTEMS AFFECTED: Rich Cannings, a security researcher and author, recently released a document identifying various web authoring tools that can produce vulnerable SWF files such as: Adobe Dreamweaver Adobe ...

OVERVIEW: Multiple vulnerabilities have been discovered in Adobe Flash Player. These vulnerabilities can be exploited if a user visits a website hosting the malicious content or opens a malicious Flash file. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged on user. This may allow the attacker to take complete control of the affected system. It should be noted that Adobe Flash Player is installed on most of the systems where web browsers are used to access the Internet. SYSTEMS AFFECTED: Adobe Flash Player 7.0.69.0 Adobe Flash Player 8.0.34.0 Adobe ...

A new vulnerability in Apple Quicktime is actively being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site. If the vulnerability is successfully exploited, an attacker may be able to execute arbitrary code on a vulnerable system with the same rights of the logged-on user this may allow the attacker to gain complete control of the affected system. Note that there is currently no patch for this vulnerability. DECEMBER 14 UPDATED INFORMATION: Apple released a patch that addresses the QuickTime RTSP vulnerability. This patch also addresses two other vulnerabilities; refer ...

OVERVIEW: Four vulnerabilities have been identified in Microsoft Internet Explorer that could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. It should be noted that these vulnerabilities are currently being exploited. SYSTEMS AFFECTED: Microsoft ...

OVERVIEW: A new vulnerability has been discovered which is caused by improper handling of certain Windows media content files. Client applications which make use of Microsoft Media Format Runtime, such as Windows Media Player, can be exploited if a user visits a malicious web page or manually opens a malicious media file. This vulnerability can be exploited if a user visits a malicious webpage which is specially designed to exploit this vulnerability. Alternatively, an attacker could send specially crafted content to a server, such as a streaming media server, which is configured to process the file. An attacker who ...

OVERVIEW: Vulnerabilities have been found in Microsoft DirectX which handles audio and video media files in applications such as Windows Media Player. These vulnerabilities could allow an attacker to take complete control of an affected system. These vulnerabilities can be exploited if a user visits a specifically crafted web page or opens a maliciously crafted file. Successful exploitation will result in an attacker gaining the same user privileges as the logged on user. If the user is logged in with administrator privileges, the attacker could then install programs; view, change, or delete data; or create new accounts with full ...

OVERVIEW: A new vulnerability in Apple Quicktime is actively being exploited on the Internet. Apple Quicktime is a media player for the Mac OS X and Microsoft Windows operating systems. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious e-mail attachment. If the vulnerability is successfully exploited, an attacker may be able to execute arbitrary code on a vulnerable system with the same rights of the logged-on user. This may allow the attacker to gain complete control of the affected system. Note that there is currently no patch for this vulnerability. ...

OVERVIEW: A new vulnerability has been discovered in the IBM Lotus Notes email client for which public exploit code is available on the Internet. The vulnerability can be exploited if a user opens an email and views a malicious Lotus 1-2-3 (IBM Lotus Software's spreadsheet program) file attachment. A successful attack would corrupt memory and execute malicious code providing the attacker with the same privileges as the logged-on user. If the user is logged-on with administrative privileges, the attacker can take complete control of the affected system, add/modify or delete user accounts and programs. SYSTEMS AFFECTED: ...

OVERVIEW: A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. ...

OVERVIEW: A new vulnerability has been discovered in the IBM Lotus Notes email application. The vulnerability can be exploited if a user opens an email and views a malicious attachment. Successful exploitation would result in the attacker gaining the same rights as the logged-on user. This may allow the attacker to gain complete control of the system. SYSTEMS AFFECTED: IBM Lotus Notes 7.0.2 Verity Keyview Export SDK 7 Verity Keyview Export SDK 8 Verity Keyview Export SDK 9 Verity Keyview Filter SDK 7 Verity Keyview Filter SDK 8 Verity Keyview Filter SDK 9 Verity Keyview Viewer SDK ...

A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. There has ...

OVERVIEW: RealPlayer is a product used to listen to audio files or to view videos files. A new vulnerability in RealPlayer is currently being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious email. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged-on user. This may allow the attacker to take complete control of the affected system. Note that there is currently no patch for this vulnerability. See updated information below. OCTOBER 22 UPDATED INFORMATION: RealPlayer released a patch that ...

OVERVIEW: RealPlayer is a product used to listen to audio files or to view videos files. A new vulnerability in RealPlayer is currently being exploited on the Internet. The vulnerability can be exploited if a user visits a malicious web site or opens a malicious email. If the vulnerability is successfully exploited, the attacker will have the same rights as the logged-on user. This may allow the attacker to take complete control of the affected system. Note that there is currently no patch for this vulnerability. SYSTEMS AFFECTED: Real Networks RealPlayer Versions: 6.0.14.544 6.0.14.550 (11 Beta) 6.0.12.1662 (10.5) ...

OVERVIEW: A new vulnerability has been discovered in the way that Internet Explorer interacts with other software products that could allow arbitrary remote code execution on a fully patched Windows XP or Vista system. This vulnerability can be exploited if a user visits a malicious web page or opens a PDF document which is specifically crafted to exploit this vulnerability. It should be noted that this vulnerability can be exploited though any affected legitimate application on systems where IE 7.0 is installed. We are currently aware of publicly available exploit code. There has also been limited exploitation of ...

OVERVIEW: Three vulnerabilities have been found in Microsoft Internet Explorer that could allow an attacker to take complete control of the affected system or to trick users into believing they are connected to a trusted web site. Two of these vulnerabilities make it easier for an attacker to create phishing web sites that appear to be legitimate sites by allowing an attacker to display a spoofed address in the browser's address bar. For example; while your browser may display www.eBay.com, the actual website address could be www.malicous-site.com. Exploits of this nature may increase the success rate of phishing attacks, ...

A new vulnerability has been discovered in the components of Microsoft Windows that render images for the user. This vulnerability can be exploited if a user opens an email attachment containing a malicious image file. This vulnerability may affect any program that render images and successful exploitation may result in the attacker taking complete control of the affected system. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Windows Server 2003 Service Pack 1 Windows Server 2003 x64 Edition Windows Server 2003 Service Pack 1 for ...

OVERVIEW: A new vulnerability has been discovered in Adobe Flash Player. This vulnerability can be exploited if a uservisits amaliciouswebpage that hosts a malicious fileoropens a malicious email attachment.Successful exploitation may result in the attacker executing malicious code utilizing the same privileges as the victim. For example, if the victim had system administrator privileges, the attacker would have the same privileges. Successful exploitation of this vulnerability could lead to victim's browser to crash, a denial of service or arbitrary code execution. Adobe Flash Player is installed on many Microsoft Windows, Mac OSX, and Linux/UNIX workstations. Web sites commonly ...

OVERVIEW: Multiple vulnerabilities have been discovered in the Java Runtime Environment (JRE) and the Java Web Start application which could allow a remote attacker to take complete control of an affected system. These vulnerabilities can be exploited when a user visits a web site that contains a malicious JPEG or BMP image file or malicious Java configuration file (a JNLP file). Exploit code is publicly available for these vulnerabilities. Java Runtime Environment is installed on many Microsoft Windows, Mac OSX, and Linux/UNIX workstations and servers since many web and business applications use it for enhanced functionality. SYSTEMS ...

OVERVIEW: Microsoft has released Security Bulletin (MS07-040), which identifies three vulnerabilities in the Microsoft .NET Framework. The .NET Framework is Microsoft's managed code programming model for applications. ASP.NET is a part of Microsoft's .NET framework that is used to build web sites and web applications. Two of the vulnerabilities allow a successful attacker to execute malicious code on the system. These vulnerabilities can be exploited by a user visiting a malicious website. The third vulnerability affects web servers running ASP.NET and if exploited can result in information disclosure. An attacker may exploit this vulnerability by sending a specially crafted ...

ORIGINAL OVERVIEW: Five vulnerabilities have been found in Microsoft Internet Explorer that could allow arbitrary code execution. These vulnerabilities can be exploited if a user visits a malicious website or clicks on a link in an email. An attacker who successfully exploited a system with any of the five vulnerabilities mentioned below could take complete control of a compromised system. If the user is running Internet Explorer and is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Proof of concept code has been made ...

OVERVIEW: Five vulnerabilities have been found in Microsoft Internet Explorer that could allow arbitrary code execution. These vulnerabilities can be exploited if a user visits a malicious website or clicks on a link in an email. An attacker who successfully exploited a system with any of the five vulnerabilities mentioned below could take complete control of an compromised system. If the user that is running Internet Explorer is logged in with administrator privileges, the attacker could then install programs, view, change, or delete data, or create new accounts with full privileges. Proof of concept has been made publicly available ...

OVERVIEW: A vulnerability in the Novell GroupWise System (Novell's Email system) has been discovered due to a design error in the GroupWise application. This vulnerability allows a malicious user to intercept network traffic without user knowledge. This traffic can include highly sensitive information, such as authentication credentials (usernames and passwords). SYSTEMS AFFECTED: Novell GroupWise 7.0 Novell GroupWise 6.5 SP6 Novell GroupWise 6.5 SP5 Novell GroupWise 6.5 SP4 Novell GroupWise 6.5 SP3 Novell GroupWise 6.5 SP2 Novell GroupWise 6.5 SP1 Novell GroupWise 6.5 Novell GroupWise 7.0.0 SP1 RISK: Government: Large and medium government ...

ORIGINAL OVERVIEW: A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. APRIL 20 UPDATED INFORMATION: Microsoft has updated its advisory to include new attack vectors for this vulnerability. MAY 08 UPDATED INFORMATION: Microsoft has released security bulletin ...

OVERVIEW: A vulnerability exists in a Microsoft security technology called CAPICOM which allows application developers to easily incorporate digital signatures and encryption functionality into applications. The known vehicle for exploiting CAPICOM is though the web browser, Internet Explorer. If successfully exploited, a remote attacker can take complete control of the affected system. Of particular importance is that the presence of CAPICOM on computers used by general users may be more wide spread than expected. For this reason, organizations should assume systems are vulnerable and apply the appropriate patches as soon as possible. SYSTEMS AFFECTED: CAPICOM Platform SDK Redistributable: ...

OVERVIEW: Four vulnerabilities have been found in Microsoft Exchange Server which could allow malicious users to cause a denial of service and in some cases allow the attacker to take complete control of the vulnerable system. All of these vulnerabilities can be exploited by sending a specially crafted malicious email to an account on a vulnerable Microsoft Exchange Server. This is particularly important because no user action is required to exploit this vulnerability. Additionally, one of these vulnerabilities, if successfully exploited, can allow an attacker to remotely execute commands which then gives the attacker the ability to take complete ...

OVERVIEW: Microsoft has released Security Bulletin (MS07-027) which announces a cumulative security update for Internet Explorer. This advisory addresses five vulnerabilities found in Microsoft Internet Explorer. An attacker may exploit these vulnerabilities by convincing a user to visit a malicious web site. If successful, the attacker will be able to take complete control of the affected system with the same user rights as the logged-on user. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 Microsoft Windows Server 2003 for ...

OVERVIEW: A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. APRIL 20 UPDATED INFORMATION: Microsoft has updated its advisory to include new attack vectors for this vulnerability. SYSTEMS AFFECTED: Microsoft Small Business Server 2000 ...

OVERVIEW: A new un-patched vulnerability in the Microsoft Windows DNS Service could allow either a remote or local attacker to take complete control of the affected system. This service typically runs on most Microsoft Active Directory Domain Controllers which, if exploited, could result in compromise of the entire domain. This vulnerability has the potential to be used in new worms or worm variants and should be addressed as soon as possible. SYSTEMS AFFECTED: Microsoft Small Business Server 2000 Microsoft Small Business Server 2003 Microsoft Small Business Server 2003 Premium Edition Microsoft Windows 2000 Server SP4 Microsoft ...

OVERVIEW: A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. MARCH 30 UPDATED INFORMATION: This vulnerability can also be exploited if a user merely views an email within ...

OVERVIEW: A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. MARCH 30 UPDATED INFORMATION: This vulnerability can also be exploited if a user merely views an email within ...

OVERVIEW: A new vulnerability has been discovered in Microsoft Windows in the way animated cursor files are processed. This vulnerability can be exploited if a user visits a malicious webpage that exploits the vulnerability, views a malicious email message in an HTML format, or opens a malicious email attachment. Successful exploitation of this vulnerability could lead to complete control of the affected system. Please note that there is proof-of-concept code available publicly on the Internet. This vulnerability is currently being exploited. SYSTEMS AFFECTED: Microsoft Windows 2000 SP4 Microsoft Windows XP SP2 Microsoft Windows XP 64-bit Version 2003 (Itanium) ...

Three vulnerabilities have been found in Microsoft Internet Explorer that would allow an attacker to obtain complete control of the affected system. These vulnerabilities can be exploited if a user visits a malicious web site or a legitimate web site that may contain advertisements that have had malicious code inserted into them. Two of the three vulnerabilities have public exploit code available. Microsoft has released three security bulletins addressing each of the vulnerabilities. We are including the three security bulletins in one advisory since they share common exploit mechanisms, workarounds, risk potential; and to emphasize that they should all ...

A new vulnerability has been discovered in Microsoft Office PowerPoint that could allow a remote attacker to run and execute commands on the local system. This vulnerability can be exploited if a user opens a malicious PowerPoint file which has been specifically crafted to exploit this vulnerability. AUGUST 8 UPDATED INFORMATION : Microsoft has released a new security bulletin (MS06-048) that supplies a patch to the Microsoft Office Library file 'mso.dll'. In addition to the patch, a new vulnerability in Microsoft Office PowerPoint has been found and would allow a remote attacker to run and execute commands on ...

Microsoft is reporting a new vulnerability in the way several Microsoft antivirus and security products process Adobe Portable Document Format (PDF) files. Of particular concern is Microsoft's antivirus email gateway product, Antigen, which is used by organizations to identify and quarantine malicious code. If an exploit is successful, an attacker could obtain complete control of this critical system. SYSTEMS AFFECTED: Windows Live OneCare Microsoft Antigen for Exchange 9.x Microsoft Antigen for SMTP Gateway 9.x Microsoft Windows Defender Microsoft Windows Defender x64 Edition Microsoft Windows Defender in Windows Vista Microsoft Forefront Security for Exchange Server Microsoft Forefront ...

A vulnerability exists Sun Microsystems Solaris operating system which allows an individual to gain unauthenticated access and would allow an attacker to gain complete control over the affected system. A remote exploit has been published and made available to the general public. At this point in time, a patch is not available although workarounds such as blocking the vulnerable service or implementing a more secure service are recommended. SYSTEMS AFFECTED: Solaris 10 x86 Solaris 10 SPARC RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small ...

OVERVIEW: Multiple vulnerabilities have been found in several versions of Cisco network devices including their switches and routers which could allow an attacker to cause a Denial of Service or execute commands by sending specially-formatted network traffic to an affected device. At this time, there are no known successful compromises or public attack tools for these vulnerabilities. In addition, it is important to note that Cisco PIX firewalls are not affected. SYSTEMS AFFECTED: Cisco IOS software versions 9.x, 10.x, 11.x and 12.x Cisco IOS XR software versions 2.0.X, 3.0.X, and 3.2.X. RISK: Government: Large and ...

OVERVIEW: A wide-spread Trojan horse infection called Peacomm is being distributed via email attachments. When the attachment is opened, the Trojan infects the computer and allows a hacker to control the infected system. It also attempts to download other malicious software for further exploitation of the affected computer. The highest risk is to home users since most organizations already block executable email attachments. However, an organization's risk may be higher if it allows staff to use their personal computers (e.g. remote access via dial in or broadband connections) to access the organization's internal network or allows employees to connect ...

ORIGINAL OVERVIEW: A vulnerability has been found in multiple versions of the Adobe Acrobat Reader Plugin, which allows users to view Portable Document Format (PDF) files via a web browser such as Internet Explorer or Firefox. The Adobe Acrobat Reader installs the plugin by default. Please note that only Adobe Acrobat Reader Plugin is vulnerable to this attack. This vulnerability can be exploited if an attacker can convince a user to click on a maliciously crafted link (URL) to open a PDF file. The vulnerability does not exist in the PDF document but in the parameters passed to the plugin. An ...

A new vulnerability has been identified in both the Microsoft Outlook Email Client and the Microsoft Exchange Email Server. Microsoft has assigned this vulnerability a severity rating of Critical due to the fact that this may allow a remote attacker to take complete control of an affected system without any user interaction. In order to exploit this vulnerability, an attacker must craft a malicious email message and send it to a vulnerable system. No user action is required for the successful exploitation of an affected Microsoft Exchange Server; the server must only accept a specially-crafted email message. For desktops running ...

Microsoft has released Microsoft Security Bulletin MS07-004 which addresses a new vulnerability in multiple versions of Microsoft Windows. If successfully exploited, this vulnerability could allow for a remote attacker to execute arbitrary programs on the system with the current user's privileges. Microsoft has confirmed reports of widespread use of these exploits in the wild. Vulnerable systems can be exploited by visiting malicious web sites with Internet Explorer or by viewing malicious HTML email messages in Outlook. Note that this patch replaces the patch released with the Microsoft Security Bulletin MS06-055. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows ...

A vulnerability has been found in multiple versions of the Adobe Acrobat Reader Plugin, which allows users to view Portable Document Format (PDF) files via a web browser such as Internet Explorer or Firefox. The Adobe Acrobat Reader installs the plugin by default. Please note that only the Adobe Acrobat Reader Plugin is vulnerable to this attack. This vulnerability can be exploited if an attacker can convince a user to click on a maliciously crafted link (URL) to open a PDF document. The vulnerability does not exist in the PDF document but in the parameters passed to the plugin. An ...

Two new vulnerabilities were found in components of Windows, which provide audio and video data for media applications such as Windows Media Player. If properly exploited, an attacker would be able to gain same user rights as the person logged into that system. SYSTEMS AFFECTED: Microsoft Windows Media Format 7.1 through 9.5 Series Runtime on the following operating system versions: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 x64 Edition Microsoft ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The U.S. Department ...

Multiple vulnerabilities were found in certain wireless drivers and adapters. If properly exploited, an attacker would be able to take complete control of the target system. These vulnerabilities are currently being exploited. These components are embedded within computers (particularly laptops) including, but not limited to, those from HP, Dell, Gateway, eMachines and Macintosh. SYSTEMS AFFECTED: Broadcom Wireless Driver 3.50.21.10 D-Link DWL-G132 wireless adapter Microsoft Windows XP Service Pack 1 and Service Pack 2 Linux - All versions Macintosh - All versions RISK: Government: Large and medium government entities: High Small government entities: High Businesses: Large and medium business entities: High Small ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable system. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. A vulnerable computer could be exploited if a malicious user sends a specially-crafted NetBIOS message over the Internet or an internal network. This vulnerability has the potential to be used in new worms or worm variants so should be addressed as soon as possible. AUGUST 10 UPDATED INFORMATION: The U.S. Department ...

Multiple vulnerabilities exist in Macromedia Flash Player from Adobe that could allow a remote attacker to obtain complete control of an affected system. These vulnerabilities can be exploited if a user visits a malicious web page which contains a specially crafted Flash Animation (SWF) file. Currently there are no known publicly available exploits for these vulnerabilities although proof of concept code does exist. NOVEMBER 14 UPDATED INFORMATION: Microsoft has released a new security bulletin (MS06-069) that replaces prior security updates (MS06-020) for vulnerabilities affecting the Adobe Macromedia Flash Player. Customers that have followed the guidance in Adobe Security Bulletin APSB06-11, issued ...

Several vulnerabilities exist in specific ActiveX controls, which could allow an attacker to gain control of an affected system. These vulnerabilities can be exploited by a user visiting a malicious web site with Internet Explorer, or viewing a specially crafted HTML email message. According to Microsoft, these vulnerabilities are currently being exploited in the wild. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows ...

A vulnerability exists in a core component of Microsoft Windows, which could allow an attacker to gain control of the affected system. This vulnerability can be exploited by a user visiting a malicious web site with Internet Explorer, or viewing a specially crafted email message. According to SANS and other sources, this vulnerability was being actively exploited via the Internet since 9/29/2006, thus it is important to apply this patch immediately after appropriate testing. SYSTEMS AFFECTED: Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 1 and Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows ...

Several exploit programs have been made public for a vulnerability in Microsoft Windows that affects even fully patched systems. There are publicly available exploits affecting both Microsoft Internet Explorer and Microsoft Outlook. These exploits could allow for a remote attacker to execute arbitrary programs on the system with the current user's privileges. Currently we have confirmed reports widespread use of these exploits in the wild in the past 24 hours. A user can be exploited by visiting specific malicious web sites with Internet Explorer or by viewing malicious HTML email messages in Outlook. Microsoft has confirmed this vulnerability but currently does ...

Several exploit programs have been made public for a vulnerability in Microsoft Windows that affects even fully patched systems. There are publicly available exploits affecting both Microsoft Internet Explorer and Microsoft Outlook.  These exploits could allow for a remote attacker to execute arbitrary programs on the system with the current user’s privileges. Currently we have confirmed reports widespread use of these exploits in the wild in the past 24 hours. This flaw can be exploited either by visiting specific malicious web sites with Microsoft Internet Explorer or by viewing malicious email messages in Outlook in HTML format. Microsoft has ...

A new vulnerability has been discovered in the Microsoft Server Service that could allow a remote attacker to take complete control of the vulnerable syste