From winvulns-announcements at bigmail.bigfix.com Wed Jan 6 05:21:11 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Wed, 6 Jan 2016 05:21:11 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 466 Published: Tue, 05 Jan 2016 18:48:29 GMT New Fixlets: ============ *************************************************************** Title: Internet Explorer Memory Corruption Vulnerability ? CVE-2015-2427 (MS15-112) Severity: High Fixlet ID: 31101 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval311.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2427 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." From winvulns-announcements at bigmail.bigfix.com Thu Jan 7 05:21:02 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Thu, 7 Jan 2016 05:21:02 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 469 Published: Thu, 07 Jan 2016 02:54:07 GMT New Fixlets: ============ *************************************************************** Title: Use-after-free in Content Policy due to microtask execution error Severity: High Fixlet ID: 31002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A310 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2731 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use-after-free vulnerability in the CSPService::ShouldLoad function in the microtask implementation in Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 allows remote attackers to execute arbitrary code by leveraging client-side JavaScript that triggers removal of a DOM object on the basis of a Content Policy. From winvulns-announcements at bigmail.bigfix.com Sat Jan 9 05:21:34 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Sat, 9 Jan 2016 05:21:34 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 470 Published: Fri, 08 Jan 2016 20:15:09 GMT New Fixlets: ============ *************************************************************** Title: Internet Explorer Memory Corruption Vulnerability - CVE-2015-6082 (MS15-112) Severity: High Fixlet ID: 33302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A333 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-6082 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability", a different vulnerability than CVE-2015-6068, CVE-2015-6072, CVE-2015-6073, CVE-2015-6075, CVE-2015-6077, CVE-2015-6079, and CVE-2015-6080. From winvulns-announcements at bigmail.bigfix.com Wed Jan 27 05:21:12 2016 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Wed, 27 Jan 2016 05:21:12 -0800 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 471 Published: Tue, 26 Jan 2016 17:47:26 GMT New Fixlets: ============ *************************************************************** Title: Retired Site: Vulnerabilities to Windows - BETA Severity: Fixlet ID: 12 Fixlet Description: The listed computers are subscribed to the retired "Vulnerabilities to Windows Systems BETA" Fixlet site. The site has been replaced by the "Vulnerabilities to Windows Systems" Fixlet site and will no longer be updated or supported by BigFix. Please contact your BigFix sales representative for information on how to migrate to the new site. You will be asked to unsubscribe from the BETA site and subscribe to the new "Vulnerabilities to Windows Systems" Fixlet site. *************************************************************** Title: Internet Explorer Memory Corruption Vulnerability ? CVE-2015-6066 (MS15-112) Severity: High Fixlet ID: 37602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A376 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-6066 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6070, CVE-2015-6071, CVE-2015-6074, CVE-2015-6076, and CVE-2015-6087. *************************************************************** Title: MS Exchange / OWA NTLM Authentication Vulnerability Severity: Medium Fixlet ID: 47701 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval477.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0904 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Exchange 2003 and Outlook Web Access (OWA), when configured to use NTLM authentication, does not properly reuse HTTP connections, which can cause OWA users to view mailboxes of other users when Kerberos has been disabled as an authentication method for IIS 6.0, e.g. when SharePoint Services 2.0 is installed. *************************************************************** Title: MS Word 97 Macro Names Buffer Overflow Severity: High Fixlet ID: 58501 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval585.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0820 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. *************************************************************** Title: MS Word 98 Macro Names Buffer Overflow Severity: High Fixlet ID: 58601 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval586.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0820 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. *************************************************************** Title: MS FrontPage Server Extensions SmartHTML Denial of Service (Test 4) Severity: Medium Fixlet ID: 62501 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval625.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0824 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request. *************************************************************** Title: MS Excel 97 Malicious Macro Security Bypass Vulnerability Severity: High Fixlet ID: 67501 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval675.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0821 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model. *************************************************************** Title: MS FrontPage Server Extensions SmartHTML Denial of Service (Test 5) Severity: Medium Fixlet ID: 76201 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval762.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0824 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request. *************************************************************** Title: MS Windows Media Service Denial of Service Severity: Medium Fixlet ID: 84201 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval842.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0905 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Unknown vulnerability in Windows Media Station Service and Windows Media Monitor Service components of Windows Media Services 4.1 allows remote attackers to cause a denial of service (disallowing new connections) via a certain sequence of TCP/IP packets. *************************************************************** Title: Server 2003 RPCSS DCOM Buffer Overflow Severity: Medium Fixlet ID: 89401 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval894.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0813 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a denial of service (crash or reboot) by causing two threads to process the same RPC request, which causes one thread to use memory after it has been freed, a different vulnerability than CVE-2003-0352 (Blaster/Nachi), CVE-2003-0715, and CVE-2003-0528, and as demonstrated by certain exploits against those vulnerabilities. *************************************************************** Title: Server 2003 RPCSS Service DCOM Activation Denial of Service Severity: Medium Fixlet ID: 95701 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval957.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0116 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An Activation function in the RPCSS Service involved with DCOM activation for Microsoft Windows 2000, XP, and 2003 allows remote attackers to cause a denial of service (memory consumption) via an activation request with a large length field. *************************************************************** Title: Veritas Backup Exec RestrictAnonymous Forced Misconfiguration Vulnerability Severity: Medium Fixlet ID: 103601 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval1036.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1117 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Veritas Backup Exec 8.5 and earlier requires that the "RestrictAnonymous" registry key for Microsoft Exchange 2000 must be set to 0, which enables anonymous listing of the SAM database and shares. *************************************************************** Title: Crystal Reports Business Objects Directory Traversal Severity: High Fixlet ID: 115701 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval1157.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0204 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2, and other products, allows remote attackers to read and delete arbitrary files via ".." sequences in the dynamicimag argument to crystalimagehandler.aspx. *************************************************************** Title: Excel 2002 File Handler Code Execution Vulnerability Severity: High Fixlet ID: 422601 Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval4226.html Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0846 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly validated.