| Mar 26, 2008 |
VLC Media Player Vulnerability VLC has released a patch to address an integer overflow vulnerability in VLC Media Player. By convincing a user to open an MP4 file with a specially crafted RDRF atom, a remote attacker may be able to execute arbitrary code. For users who compile VLC Media Player from source, VLC has provided a patch to address this issue. US-CERT will provide more information as it becomes available. |
| Mar 26, 2008 |
Novell eDirectory Vulnerability Novell has released Security Vulnerability document 3382120 to address a vulnerability in eDirectory. This vulnerability is caused by improper handling of large LDAP Extended Request messages. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users to review Novell document 3382120 and update to eDirectory 8.8.2. |
| Mar 26, 2008 |
Mozilla Releases Firefox 2.0.0.13 Mozilla has released Firefox 2.0.0.13. This version addresses multiple vulnerabilities that may allow an attacker to execute arbitrary code, bypass security restrictions, obtain sensitive information, or conduct cross-site scripting or phishing attacks. US-CERT encourages users to review the Mozilla Foundation Security Advisories and update to Firefox 2.0.0.13. |
| Mar 21, 2008 |
Microsoft Jet Database Engine Vulnerability Microsoft has released a Security Advisory to address a vulnerability in Microsoft Jet Database Engine. This vulnerability is due to a buffer overflow condition in msjet40.dll. By convincing a user to open a Word document that is designed to load a specially crafted database file using msjet40.dll, an attacker may be able execute arbitrary code. US-CERT encourages users to review Microsoft Security Advisory 950627 and apply the suggested workarounds. US-CERT will provide more information as it becomes available. |
| Mar 21, 2008 |
Search Engine IFRAME Injection Attacks US-CERT has seen reports of attacks using specially crafted URLs that inject IFRAMEs as terms into search engines on legitimate websites. The affected URLs include popular search terms, and may be returned as high ranking results in internet search engines. If the site hosting the search engine is vulnerable to cross-site scripting, users who follow the affected URLs may be unknowingly redirected to malicious websites. These sites may then attempt to exploit web browser vulnerabilities, entice users to download and install malicious code, or display unsolicited advertisements. US-CERT encourages users to do the following to help mitigate the risk of this and similar attacks:
|
| Mar 21, 2008 |
Websites Compromised Through SQL Injection US-CERT has seen reports of an attack that has compromised a large number of legitimate websites. The reports indicate that attackers are modifying the sites and embedding a reference to JavaScript code. Users who visit one of these infected websites may unknowingly execute malicious code. This code attempts to exploit known vulnerabilities for which patches are available but may not have been applied to the victim's system. This issue is currently exploiting a variety of vulnerabilities:
|
| Mar 21, 2008 |
Microsoft Updates March Security Bulletin Microsoft has made revisions to all of the March Security Bulletins. These revisions
US-CERT encourages users to review the updated March Security Bulletins and apply any necessary updates. |
| Mar 21, 2008 |
F-Secure Releases Security Bulletin F-Secure has released Security Bulletin FSC-2008-2 to address vulnerabilities in multiple F-Secure products. These vulnerabilities are caused by improper handling of malformed archives. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users to review F-Secure Security Bulletin FSC-2008-2 and apply the updates. US-CERT will provide more information as it becomes available. |
| Mar 21, 2008 |
CA BrightStor ARCserve Backup Vulnerability US-CERT has seen reports of a vulnerability in CA BrightStor ARCserve Backup. This vulnerability is due to a boundary error within the "AddColumn()" method in the "ListCtrl" ActiveX control. Exploitation of this vulnerability may allow a remote attacker to cause a stack-based buffer overflow and execute arbitrary code. US-CERT encourages users to do the following to help mitigate the risk:
|
| Mar 21, 2008 |
VMware Security Advisory VMware has released Security Advisory VMSA-2008-0005 to address multiple vulnerabilities in several VMware products. These vulnerabilities may allow an attacker to execute arbitrary code, escalate privileges, or cause a denial-of-service condition. US-CERT encourages users to review VMware Security Advisory VMSA-2008-0005 and apply any necessary updates. US-CERT will provide more information as it becomes available. |