1. 003-08-29 Real Networks Helix Universal Server Remote Buffer Overflow Vulnerability
Review:
Helix Universal Server is a development and maintenance by the RealNetWorks many types of media server. Helix Universal Server in dealing with''View Source''plug-in to achieve a buffer overflow issue exists in remote attacker could exploit this flaw to serve process on the system privileges to execute arbitrary commands.
This vulnerability is very easy to use, the attacker or even not have to guess the return address can be attacked, there are already programs for multiple operating systems spread attack. Are using Realserver users should upgrade immediately or remove the problematic plug-ins.
Hazard:
Attacker may account for system administration privileges to execute arbitrary commands.
2. 2003-08-13 Cisco IOS 2GB HTTP GET Remote Buffer Overflow Vulnerability
Summary:
Cisco IOS is a very wide range of network operating system deployment. Many Cisco devices run IOS. Cisco IOS device's HTTP server program did not correctly handle large data requests, if the CISCO IOS http service turned on, the attacker sends a specially crafted HTTP GET data contains 2Gb request, can lead to trigger a buffer overflow, causing heavy equipment from, or presence to system privileges to execute arbitrary commands.
Although this vulnerability does not seem so easy to use up to 2G of data can be sent to attack it even on slow networks take ten hours. However, the discoverer of this vulnerability, FX has announced the effective use of the code, it is worth attention.
Hazard:
An attacker could cause Cisco network devices to stop normal service or system privileges to execute arbitrary commands.
3. 2003-08-14 Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerability number
Summary:
Oracle XDB is introduced in Oracle XML Oracle 9i database, Oracle XDB HTTP-based data service through 8080 TCP port 2100 or port-based access to FTP services. XDB HTTP and FTP services for multiple buffer overflow, a remote attacker could exploit these vulnerabilities to denial of service attack on the service, and carefully string data may be submitted to the service process privileges to execute arbitrary commands on the system.
Several vulnerabilities are described below:
-XDB HTTP long user name or password buffer overflow vulnerability.
-XDB FTP long user name or password buffer overflow vulnerability.
-XDB FTP test command parameter is not adequately check the problem.
-XDB FTP unlock command parameters do not adequately check the problem.
Hazard:
An attacker could remotely to run XDB services authority to execute arbitrary commands.
4. 2003-08-22 eMule client multiple serious security vulnerabilities
Summary:
Like downloading software and multimedia files on the eMule users certainly no stranger, it is a eDnkey 2000-based file sharing client, in the widely used peer downloading. eMule client multiple serious security vulnerabilities, as improper handling of user submits a special message, a remote attacker could exploit these vulnerabilities on the client side denial of service attacks, or even to eMule client process to execute arbitrary commands on the system.
Once this point to download the software security problem that affects a very large, because the user did not know each other is a malicious attacker or normal user, while downloading the software may be attacked or invaded. So the next attack against the software may be increased.
These vulnerabilities include:
2003-08-22 eMule client AttachToAlreadyKnown memory double free vulnerability
2003-08-22 eMule client OP_SERVERMESSAGE format string handling vulnerability
2003-08-22 eMule client OP_SERVERIDENT Heap Overflow Vulnerability
2003-08-22 eMule client Servername Format String Vulnerability handling
Hazard:
Attacker to run eMule users may execute arbitrary commands.
5. 2003-08-25 Microsoft MDAC Function Remote Buffer Overflow Vulnerability 5.
Summary:
Microsoft Data Access Components (MDAC) is a database for the Windows platform to provide interconnection of components. MDAC is included by default in Microsoft Windows XP, Windows 2000, Windows Millennium Edition and Windows Server 2003, can also be independently obtained at the following address:
http://msdn.microsoft.com/library/default.asp?url=/downloads/list/dataaccess.asp
MDAC is also included in multiple products and technologies, such as included in Microsoft Windows NT 4.0 Option Pack and Microsoft SQL Server 2000 in.
MDAC provides multiple database operations functions such as connecting remote database and return data to the client. When the client-side system uses MDAC components to try to get the machine running SQL service list, will send broadcast packet 文 to the network, the server because the client right to return the response is missing Chongfen inspection, if Wu Yi machine to answer Zhege long message broadcast packets, it can trigger a stack-based overflow.
[Next]
With system privileges attacker may execute arbitrary commands in the system.
Hazard:
A remote attacker could exploit this vulnerability in the affected host to execute arbitrary commands.
6. 2003-08-22 Microsoft Internet Explorer multiple security vulnerabilities
Summary:
Microsoft Internet Explorer is a popular procedure WEB browsing. Internet Explorer multiple security vulnerabilities recently discovered that allows an attacker by setting the malicious Web page to trick users into running malicious code or the code specified by the attacker.
These vulnerabilities include:
2003-08-25 Internet Explorer Object Data Remote Execution Vulnerability
2003-08-26 Microsoft Internet Explorer BR549.DLL ActiveX Control Buffer Overflow Vulnerability
The vulnerability has been in Microsoft Security Bulletin MS03-032 been restored, using IE customers should immediately download and install the latest IE cumulative patch to eliminate the threat.
Hazard:
An attacker could to IE users are using to execute arbitrary commands.
7. 2003-08-08 Postfix multiple remote denial of service attack vulnerability
Review:
Postfix is a popular Unix / Linux systems the mail service program. Postfix mail transfer agent present there are two vulnerabilities, a remote attacker can exploit these vulnerabilities on the service process Postfix denial of service attacks or the agent as a DDOS attack. Is using Postfix users should upgrade as soon as possible to prevent a possible denial of service attacks.
Hazard:
An attacker could cause denial of service Postfix service.
8. 2003-08-08 HP Compaq Insight Management Agent handling remote format string vulnerability
Summary:
Compaq Management Agents (CMA) is a Compaq provides network management software. Compaq Management Agents contain the HTTP server format string issue exists, a remote attacker could exploit this vulnerability to submit malicious requests carefully, possibly by the local system privileges to execute arbitrary commands on the system.
As the HTTP server to the user request submitted by the lack of the correct URL parameter filtering, format string that contains the data presented may lead to destruction of stack memory information, and carefully constructed format string data may be a local system privileges to execute arbitrary commands on your system.
Hazard:
Remote attacker can the server to the system user to execute arbitrary code.
9. 2003-08-14 multiple vendors C library realpath () single-byte buffer overflow
Summary:
realpath (3) function is used in the path name given an absolute path name judgment rule, given the path name may contain ``/'''' characters, and relate to as ``/./'''' or ``/../'''', symbol connections, realpath (3) function is the standard C language library FreeBSD part. realpath (3) analytic function obtained in the calculation of the length of the path name exists in single-byte overflow, local or remote attacker could exploit this vulnerability on the use of this function of the service buffer overflow attacks, the system can process privileges to execute arbitrary instruction.
The flaw affects multiple operating systems including FreeBSD / NetBSD / OpenBSD, etc..
Hazard:
A remote attacker to issue in the server process to execute arbitrary code.
10. 2003-08-12 Sun Microsystems ONE Application Server Java server page source code disclosure vulnerability
Summary:
Solaris is Sun Microsystems Inc. offered by the commercial nature of the development and maintenance of UNIX operating system. Sun Introduces Sun ONE is a smart combination of Web services, software systems, including Sun ONE Unified Development Server, Sun ONE Application Server can be installed on Windows and Unix operating systems. Sun ONE Application Server loopholes can lead to disclosure of the source code of Java Server Pages, a remote attacker could exploit the vulnerability of sensitive information, unauthorized access to the system.
Hazard:
Remote attackers can obtain source code for Java Server script.