[Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems'
Notification of New Vulnerabilties to Windows Systems Fixlet Messages
winvulns-announcements at bigmail.bigfix.com
Wed Sep 15 05:20:12 PDT 2010
Fixlet Site - 'Vulnerabilities to Windows Systems'
Current Version: 219 Published: Tue, 14 Sep 2010 18:14:24 GMT
New Fixlets:
============
***************************************************************
Title: Cross-site request forgery in Google Chrome version before 4.1.249.1059.
Severity: High
Fixlet ID: 1114001
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11140.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1501
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Cross-site request forgery (CSRF) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
***************************************************************
Title: Cross-site scripting (XSS) vulnerability related to chrome://net-internals [^] URI in Google Chrome version before 4.1.249.1059.
Severity: Medium
Fixlet ID: 1124401
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11244.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1503
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://net-internals URI.
***************************************************************
Title: Cross-site scripting (XSS) vulnerability allows remote attackers in Google Chrome version before 4.1.249.1059.
Severity: Medium
Fixlet ID: 1141801
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11418.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1504
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://downloads URI.
***************************************************************
Title: Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10
Severity: High
Fixlet ID: 1149801
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11498.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3133
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.
***************************************************************
Title: Unspecified vulnerability in Google Chrome before 5.0.375.55 allows to spoof the URL bar
Severity: High
Fixlet ID: 1164401
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11644.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2106
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Unspecified vulnerability in Google Chrome before 5.0.375.55 might allow remote attackers to spoof the URL bar via vectors involving unload event handlers.
***************************************************************
Title: Untrusted search path vulnerability in Skype version less than or equal to 4.2.0.169
Severity: High
Fixlet ID: 1183301
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11833.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3136
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Untrusted search path vulnerability in Skype 4.2.0.169 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32.dll that is located in the same folder as a .skype file.
***************************************************************
Title: Prevent pages from loading with the New Tab page's privileges in Google Chrome version before 4.1.249.1059
Severity: High
Fixlet ID: 1186601
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11866.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1505
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Google Chrome before 4.1.249.1059 does not prevent pages from loading with the New Tab page's privileges, which has unknown impact and attack vectors.
***************************************************************
Title: Type confusion error in Google Chrome version before 4.1.249.1059.
Severity: High
Fixlet ID: 1190601
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11906.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1500
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Google Chrome before 4.1.249.1059 does not properly support forms, which has unknown impact and attack vectors, related to a "type confusion error."
***************************************************************
Title: Denial of service found in Google Chrome version before 4.1.249.1059
Severity: High
Fixlet ID: 1192501
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval11925.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1506
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: The Google V8 bindings in Google Chrome before 4.1.249.1059 allow attackers to cause a denial of service (memory corruption) via unknown vectors.
***************************************************************
Title: Developer tools vulnerability in Google Chrome version before 4.1.249.1059.
Severity: High
Fixlet ID: 1204101
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12041.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1502
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to access local files via vectors related to "developer tools."
***************************************************************
Title: Integer truncation error in OpenOffice.org version 3.2.1
Severity: High
Fixlet ID: 1206301
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12063.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2935
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: simpress.bin in the Impress module in OpenOffice.org (OOo) 3.2.1 on Windows does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."
***************************************************************
Title: Denial of service in Google Chrome before 5.0.375.55 related to the "drag + drop" functionality
Severity: High
Fixlet ID: 1208301
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12083.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2109
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Unspecified vulnerability in Google Chrome before 5.0.375.55 allows user-assisted remote attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the "drag + drop" functionality.
***************************************************************
Title: Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs
Severity: High
Fixlet ID: 1211301
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12113.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2105
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors.
***************************************************************
Title: Unspecified impact and remote attack vectors in Google Chrome before 5.0.375.55
Severity: High
Fixlet ID: 1212301
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12123.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2110
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Google Chrome before 5.0.375.55 does not properly execute JavaScript code in the extension context, which has unspecified impact and remote attack vectors.
***************************************************************
Title: Unspecified vulnerability in Google Chrome before 5.0.375.55 allows remote attackers to bypass the whitelist-mode plugin blocker via unknown vectors
Severity: High
Fixlet ID: 1212601
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12126.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2108
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Unspecified vulnerability in Google Chrome before 5.0.375.55 allows remote attackers to bypass the whitelist-mode plugin blocker via unknown vectors.
***************************************************************
Title: Unspecified vulnerability in Google Chrome before 5.0.375.55 related to the Safe Browsing functionality
Severity: High
Fixlet ID: 1212801
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12128.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2107
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Unspecified vulnerability in Google Chrome before 5.0.375.55 allows attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the Safe Browsing functionality.
***************************************************************
Title: Heap-based buffer overflow in OpenOffice.org version 3.2.1
Severity: High
Fixlet ID: 1214401
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12144.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2936
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Integer overflow in simpress.bin in the Impress module in OpenOffice.org (OOo) 3.2.1 on Windows allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow.
***************************************************************
Title: Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows DLL hijacking attacks
Severity: High
Fixlet ID: 1219001
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval12190.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3124
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll that is located in the same folder as a .mp3 file.
More information about the WinVulns-Announcements
mailing list