Intel® Security Vulnerabilities

Cisco Security Advisory: Vulnerability in Cisco IOS Embedded Call Processing Solutions

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerability in Cisco IOS Embedded Call Processing Solutions Revision 1.0 For Public Release 2005 January 19 1500 UTC +---------------------------------------------------------------------- Contents Summary Affected Products...

Vulnerability in Cisco IOS Embedded Call Processing Solutions

Cisco Internetwork Operating System (IOS®) Software release trains 12.1YD, 12.2T, 12.3 and 12.3T, when configured for the Cisco IOS Telephony Service (ITS), Cisco CallManager Express (CME) or Survivable Remote Site Telephony (SRST) may contain a vulnerability in processing certain...

remote DoS for Nasi

oooo oooo oooooooo8 ooooooooooo 8888o 88 888 88 888 88 88 888o88 888oooooo 888 88 8888 888 888 o88o 88 o88oooo888 o888o * Network security team * nst.e-nex.com ** Title: All version <= Network Assistant 3.2 build 2260 Bug found by: : Гринвуд...

win xp/2000/2003 Download File and Exec 241 bytes

Exploit for win32 platform in category...

Microsoft Security Bulletin MS04-030 Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service (824151)

Microsoft Security Bulletin MS04-030 Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service (824151) Issued: October 12, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Denial of Service Maximum...

Microsoft Security Bulletin MS04-034 Vulnerability in Compressed (zipped) Folders Could Allow Remote Code Execution (873376)

Microsoft Security Bulletin MS04-034 Vulnerability in Compressed (zipped) Folders Could Allow Remote Code Execution (873376) Issued: October 12, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows XP or Windows Server 2003 Impact of Vulnerability: Remote...

Microsoft Security Bulletin MS04-028 Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)

Microsoft Security Bulletin MS04-028 Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987) Issued: September 14, 2004 Version: 1.0 Summary Who should read this document: Customers who use any of the affected operating systems, affected software programs, or affected...

Cisco Security Advisory: Cisco Telnet Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Telnet Denial of Service Vulnerability Revision 1.0 For Public Release 2004 August 27 1000 UTC Contents Summary Affected Products Details Impact Software Versions and Fixes Obtaining Fixed Software Workarounds...

Cisco Telnet Denial of Service Vulnerability

A specifically crafted Transmission Control Protocol (TCP) connection to a telnet or reverse telnet port of a Cisco device running Internetwork Operating System (IOS)® may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases Hypertext Transport...

ISS Protection Brief: Entrust Libkmp Library Buffer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Protection Brief August 26, 2004 Entrust LibKmp Library Buffer Overflow Summary: ISS X-Force has discovered a flaw in the Entrust LibKmp ISAKMP library. This library is used by multiple VPN vendors to facilitate IKE key exchange for...

Microsoft Security Bulletin MS04-026 Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842436)

Microsoft Security Bulletin MS04-026 Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842436) Issued: August 10, 2004 Version: 1.0 Summary Who should read this document: System administrators who have servers running Microsoft® Exchange....

Microsoft Security Bulletin MS04-025 Cumulative Security Update for Internet Explorer (867801)

Microsoft Security Bulletin MS04-025 Cumulative Security Update for Internet Explorer (867801) Issued: July 30, 2004 Updated: August 1, 2004 Version: 2.0 Summary Who should read this document: Customers who use Microsoft® Internet Explorer Impact of Vulnerability: Remote Code Execution Maximum...

Microsoft Windows XP - Task Scheduler '.job' Universal (MS04-022)

...

Microsoft Windows XP - Task Scheduler .job Universal (MS04-022)

Microsoft Windows XP - Task Scheduler .job Universal...

ISS Protection Brief: Checkpoint VPN-1 ASN.1 Decoding Remote Compromise

-----BEGIN PGP SIGNED MESSAGE----- nternet Security Systems Protection Brief July 28, 2004 Check Point VPN-1 ASN.1 Decoding Remote Compromise Summary: ISS has shipped protection for a flaw X-Force has discovered in CheckPoint VPN-1 Server. The Check Point VPN-1 product is widely relied upon to ...

Microsoft Security Bulletin MS04-021

Microsoft Security Bulletin MS04-021 Security Update for IIS 4.0 (841373) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® NT® 4.0 Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Important Recommendation:...

Microsoft Security Bulletin MS04-020 Vulnerability in POSIX Could Allow Code Execution (841872)

Microsoft Security Bulletin MS04-020 Vulnerability in POSIX Could Allow Code Execution (841872) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® 2000 or Windows NT 4.0 Impact of Vulnerability: Local Elevation of Privilege Maximum...

Microsoft Security Bulletin MS04-019 Vulnerability in Utility Manager Could Allow Code Execution (842526)

Microsoft Security Bulletin MS04-019 Vulnerability in Utility Manager Could Allow Code Execution (842526) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® 2000 Impact of Vulnerability: Local Elevation of Privilege Maximum Severity...

Microsoft Security Bulletin MS04-022 Vulnerability in Task Scheduler Could Allow Code Execution (841873)

Microsoft Security Bulletin MS04-022 Vulnerability in Task Scheduler Could Allow Code Execution (841873) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical.....

Microsoft Security Bulletin MS04-023

Microsoft Security Bulletin MS04-023 Vulnerability in HTML Help Could Allow Code Execution (840315) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical...

Microsoft Security Bulletin MS04-018

Microsoft Security Bulletin MS04-018 Cumulative Security Update for Outlook Express (823353) Issued: July 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Outlook Express® Impact of Vulnerability: Denial of Service Maximum Severity Rating: Moderate...

Microsoft Security Bulletin MS04-024

Microsoft Security Bulletin MS04-024 Vulnerability in Windows Shell Could Allow Remote Code Execution (839645) Issued: July 13, 2004 Version: 1.2 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Remote Code Execution Maximum Severity Rating:...

[Full-Disclosure] Cisco Security Advisory: Cisco IOS Malformed BGP packet causes reload

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Malformed BGP Packet Causes Reload Revision 1.0 Last Updated June 16 15:00 UTC (GMT) For Public Release 2004 June 16 15:00 UTC (GMT) Please provide your feedback on this document. Contents Summary Affected Products...

Microsoft Security Bulletin MS04-017 Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689)

Microsoft Security Bulletin MS04-017 Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689) Issued: June 8, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Visual Studio .NET 2003, who use Microsoft Office....

Microsoft Security Bulletin MS04-016 Vulnerability in DirectPlay Could Allow Denial of Service (839643)

Microsoft Security Bulletin MS04-016 Vulnerability in DirectPlay Could Allow Denial of Service (839643) Issued: June 8, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Denial of Service Maximum Severity Rating: Moderate...

HelpCenter Live! 1.2.7 - Multiple Vulnerabilities

HelpCenter Live! 1.2.7 - Multiple...

HelpCenter Live! < 1.2.7 - Multiple Vulnerabilities

...

Microsoft Security Bulletin MS04-015 Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374)

Microsoft Security Bulletin MS04-015 Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374) Issued: May 11, 2004 Updated: May 11, 2004 Version: 1.1 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Remote Code...

Microsoft Help and Support Center (HCP) fails to properly validate HCP URLs

Overview The Microsoft Help and Support Center (HCP) fails to properly handle HCP URL validation. Exploitation of this vulnerability may permit remote attackers to execute arbitrary code on the system with the privileges of the current user. Description Microsoft Windows XP and Server 2003 Help...

[Full-Disclosure] 3com NBX VOIP NetSet Denial of Service Attack

Systems: 3com NBX IP VOIP NetSet(r) Configuration Manager Severity: Serious Category: Denial of Service Classification: Insufficient user input checking BugTraq-ID: TBD CERT VU#: TBD CVE ID: TBD Vendor URL: www.3com.com Author: Michael S. Scheidell, SECNAP Network Security Corporation Original...

Cisco Security Advisory: TCP Vulnerabilities in Multiple IOS Based Cisco Products

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: TCP Vulnerabilities in Multiple IOS-Based Cisco Products Revision 1.0 For Public Release 2004 April 20 21:00 UTC (GMT) Summary A vulnerability in the Transmission Control Protocol (TCP) specification (RFC793) has been...

Cisco Security Advisory: TCP Vulnerabilities in Multiple Non-IOS-Based Cisco Products

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: TCP Vulnerabilities in Multiple Non-IOS Cisco Products Revision 1.0 For Public Release 2004 April 20 21:00 UTC (GMT) Summary A vulnerability in the Transmission Control Protocol (TCP) specification (RFC793) has been discovered.....

TCP Vulnerabilities in Multiple Non-IOS Cisco Products

A vulnerability in the Transmission Control Protocol (TCP) specification (RFC793) has been discovered by an external researcher. The successful exploitation enables an adversary to reset any established TCP connection in a much shorter time than was previously discussed publicly. Depending on...

Microsoft Security Bulletin MS04-014

Microsoft Security Bulletin MS04-014 Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution (837001) Issued: April 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum...

Microsoft Security Bulletin MS04-013

Microsoft Security Bulletin MS04-013 Cumulative Security Update for Outlook Express (837009) Issued: April 13, 2004 Version: 1.0 Summary Who should read this document: Customers who have Microsoft® Outlook Express® installed Impact of vulnerability: Remote Code Execution Maximum Severity Rating:...

Microsoft Security Bulletin MS04-011

Microsoft Security Bulletin MS04-011 Security Update for Microsoft Windows (835732) Issued: April 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum Severity Rating: Critical Recommendation:...

Microsoft Security Bulletin MS04-012

Microsoft Security Bulletin MS04-012 Cumulative Update for Microsoft RPC/DCOM (828741) Issued: April 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum Severity Rating: Critical Recommendation:...

How to crash a harddisk - the Ipswitch WS_FTP Server way

Advisory Name: How to crash a harddisk - the Ipswitch WS_FTP Server way Impact : Denial of Service Discovered by: Hugh Mann [email protected] Tested progs : Ipswitch WS_FTP Server 4.0.2.EVAL Description It's possible for any user with write access to a directory, even when there's a limi...

[Full-Disclosure] Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities

S-Quadra Advisory #2004-03-12 Topic: Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities Severity: High Vendor URL: http://www.cfwebstore.com Advisory URL: http://www.s-quadra.com/advisories/Adv-20040312.txt Release date: 12 Mar 2004 DESCRIPTION ...

Microsoft Security Bulletin MS04-009

Microsoft Security Bulletin MS04-009 Vulnerability in Microsoft Outlook Could Allow Code Execution (828040) Issued: March 9, 2004 Version: 1.0 Summary Who Should Read This Document: Customers that are using Microsoft® Office XP and Outlook 2002 Impact of Vulnerability: Remote Code Execution...

Microsoft Security Bulletin MS04-010

Microsoft Security Bulletin MS04-010 Vulnerability in MSN Messenger Could Allow Information Disclosure (838512) Issued: March 9, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® MSN Messenger Impact of vulnerability: Information Disclosure Maximum...

Microsoft Security Bulletin MS04-008

Microsoft Security Bulletin MS04-008 Vulnerability in Windows Media Services Could Allow a Denial of Service (832359) Issued: March 9, 2004 Version: 1.0 Summary Who Should Read This Document: Customers who are using Microsoft® Windows® 2000 Impact of Vulnerability: Denial of Service Maximum...

Microsoft Security Bulletin MS04-007

Microsoft Security Bulletin MS04-007 ASN.1 Vulnerability Could Allow Code Execution (828028) Issued: February 10, 2004 Version Number: 1.0 Summary Who should read this document: Customers who are using Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum Severity Rating:...

Microsoft Security Bulletin MS04-005

Microsoft Security Bulletin MS04-005 Vulnerability in Virtual PC for Mac could lead to privilege elevation (835150) Issued: February 10, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Virtual PC for Mac Impact of vulnerability: Elevation of Privilege...

Microsoft Security Bulletin MS04-006

Microsoft Security Bulletin MS04-006 Vulnerability in the Windows Internet Naming Service (WINS) Could Allow Code Execution (830352) Issued: February 10, 2004 Version Number: 1.0 Summary Who should read this document: Customers who are using Microsoft® Windows Internet Naming Service (WINS)®...

Microsoft Security Bulletin MS04-004

Microsoft Security Bulletin MS04-004 Cumulative Security Update for Internet Explorer (832894) Issued: February 2, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Internet Explorer Impact of vulnerability: Remote Code Execution Maximum Severity Rating:...

Cisco Security Advisory: Cisco 6000/6500/7600 Crafted Layer 2 Frame Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco 6000/6500/7600 Crafted Layer 2 Frame Vulnerability Revision 1.0 - FINAL For Public Release 2004 February 03 1600 UTC (GMT) Contents Summary Affected Products Details Impact Software Versions and Fixes Obtaining Fixed...

Microsoft Security Bulletin MS04-001

Microsoft Security Bulletin MS04-001 Vulnerability in Microsoft Internet Security and Acceleration Server 2000 H.323 Filter Could Allow Remote Code Execution (816458) Issued: January 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Internet Security and...

Microsoft Security Bulletin MS04-003

Microsoft Security Bulletin MS04-003 Buffer Overrun in MDAC Function Could Allow Code Execution (832483) Issued: January 13, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Windows® Impact of vulnerability: Remote code execution Maximum Severity Rating:.....

Cisco Security Advisory: Vulnerabilities in H.323 Message Processing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerabilities in H.323 Message Processing Document ID: 47843 Revision 1.0 - INTERIM For Public Release 2004 January 13 UTC 1200 Contents Summary Affected Products Unaffected Products Details Impact Software Versions and...