NUEVA VULNERABILIDAD, Linux Kernel ‘net/mac80211/’ Multiple Remote Denial of Service Vulnerabilities

The Linux Kernel is prone to multiple remote denial-of-service vulnerabilities.

An attacker can exploit these issues to cause a kernel panic, denying service to legitimate users.

REFERENCIA DE LA VULNERABILIDAD

fuente: securityfocus.com

VULNERABILIDADES. Nuevas variantes en vulnerabilidades que afectan al servidor Apache

Nuevas variantes en vulnerabilidades que afectan al servidor Apache.

Apache APR-util ‘apr_strmatch_precompile()’ Integer Underflow Vulnerability

Apache APR-util ‘xml/apr_xml.c’ Denial of Service Vulnerability

Apache APR-util ‘apr_brigade_vprintf’ Off By One Vulnerability

 

fuente: securityfocus.com

NUEVA VULNERABILIDAD. Linux Kernel ‘unix_stream_connect()’ Local Denial of Service Vulnerability

The Linux kernel is prone to a local denial-of-service vulnerability.

Attackers can exploit this issue to cause the affected kernel to stop responding, denying service to legitimate users.

Linux kernel 2.6.31.4 is vulnerable; other versions may also be affected.
Published:     Oct 19 2009 12:00AM
Updated:        Oct 19 2009 07:38PM

REFERENCIA DE LA VULNERABILIDAD

fuente: securityfocus.com

NUEVAS VULNERABILIDADES. Multiples vulnerabilidades afectan al fabricante Cisco

Cisco IOS NTPv4 Reply Packet Remote Denial of Service Vulnerability

Cisco IOS Specially Crafted Encryption Packet Denial of Service Vulnerability

Cisco IOS Zone-Based Policy Firewall SIP Inspection Denial of Service Vulnerability

Cisco IOS Software Tunnels Multiple Denial of Service Vulnerabilities

Cisco IOS Software Internet Key Exchange Resource Exhaustion Denial of Service Vulnerability

Cisco IOS SIP Message Denial of Service Vulnerability

Cisco Unified Communications Manager Express Extension Mobility Buffer Overflow Vulnerability

Cisco Unified Communications Manager SIP Message Denial of Service Vulnerability

Cisco IOS Object Group Access Control List Bypass Vulnerability

Published:       Sep 23 2009 12:00AM
Updated:          Sep 23 2009 06:20PM

Cisco Homepage

fuente: securityfocus.com

VULNERABILIDAD. Cisco Session Border Controller (SBC) Remote Denial Of Service Vulnerability

Cisco Session Border Controller (SBC) is prone to a remote denial-of-service vulnerability when handling specially crafted TCP packets.

A remote attacker may exploit this issue to cause the affected device to reload. Repeated attacks can result in a denial-of-service condition.

This issue is documented in Cisco Bug ID CSCsq18958.

Versions prior to Cisco SBC software 3.0(2) are vulnerable. This issue affects SBC for Cisco 7600 series routers.

REFERENCIA DE LA VULNERABILIDAD

fuente: securityfocus

VULNERABILIDADES. Nuevas vulnerabilidades que afectan a Adobe Flash Player

Adobe Flash Player Invalid Object Reference Remote Code Execution Vulnerability

Adobe Flash Player Unspecified Information Disclosure Vulnerability

Adobe Flash Player Unspecified Remote Denial of Service Vulnerability

fuente: securityfocus

VULNERABILIDADES. Vulnerabilidades que afectan a Servidores Exchange de Microsoft

Microsoft Exchange Server EMSMDB2 MAPI Command Remote Denial of Service Vulnerability

Microsoft Exchange Server TNEF Decoding Remote Code Execution Vulnerability

fuente: securityfocus

VULNERABILIDADES. Grupo de vulnerabilidades encontradas en productos ADOBE.

Nuevo grupo de vulnerabilidades encontradas en productos de ADOBE.

Adobe Acrobat and Reader 8.1.2 Multiple Security Vulnerabilities

Adobe Reader ‘util.printf()’ JavaScript Function Stack Buffer Overflow Vulnerability

Adobe Acrobat Reader Unspecified Remote Denial Of Service Vulnerability

Adobe Acrobat 9 Unspecified PDF Document Encryption Weakness
fuente: securityfocus

VULNERABILIDAD. 4 Vulnerabilidades encontradas para el analizador de red WIRESHARK.

Se han encontrado 4 vulnerabilidades en el analizador de red WIRESHARK.

fuente: securityteam

Wireshark 1.0.3 Multiple Denial Of Service Vulnerabilities

Wireshark 1.0.2 Multiple Vulnerabilities

Wireshark 1.0.1 Denial of Service Vulnerability

Wireshark 1.0.0 Multiple Vulnerabilities

VULNERABILIDAD. Microsoft Internet Explorer 6 RDS.DataControl Denial of Service Vulnerability

Microsoft Internet Explorer version 6 is reportedly prone to a denial-of-service vulnerability because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.

This issue is triggered when an attacker convinces a victim user to activate a malicious ActiveX control object.

Remote attackers may exploit this issue to crash Internet Explorer 6, effectively denying service to legitimate users.

A stack-based heap overflow may be possible, and as a result, remote code execution in the context of the user running the affected application may occur. This has not been confirmed.

fuente: securityfocus

REFERENCIA DE LA VULNERABILIDAD