Fixlet Site - VulnerabilitiestoWindowsSystems
Current Version: 161	Published: Thu, 26 Mar 2009 17:05:35  GMT

New Fixlets:
============

***************************************************************
Title: Apple iTunes Information Disclosure Vulnerability
Severity: Medium
Fixlet ID: 533601
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval5336.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0143
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo

Fixlet Description: Apple iTunes before 8.1 does not properly inform the user about the origin of an authentication request, which makes it easier for remote podcast servers to trick a user into providing a username and password when subscribing to a crafted podcast.

***************************************************************
Title: Microsoft Malformed BMP Filter Vulnerability
Severity: High
Fixlet ID: 586801
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval5868.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3020
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo

Fixlet Description: Microsoft Office 2000 SP3 and XP SP3; Office Converter Pack; and Works 8 do not properly parse the length of a BMP file, which allows remote attackers to execute arbitrary code via a crafted BMP file, aka the "Malformed BMP Filter Vulnerability."

***************************************************************
Title: Apple iTunes Denial of Service Vulnerability
Severity: Medium
Fixlet ID: 600101
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval6001.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0016
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo

Fixlet Description: Apple iTunes before 8.1 on Windows allows remote attackers to cause a denial of service (infinite loop) via a Digital Audio Access Protocol (DAAP) message with a crafted Content-Length header.

***************************************************************
Title: Apple Safari Malformed URI Remote Denail of Service Vulnerability
Severity: Medium
Fixlet ID: 606601
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval6066.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0744
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo

Fixlet Description: Apple Safari 4 Beta build 528.16 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a feeds: URI beginning with a (1) % (percent), (2) { (open curly bracket), (3) } (close curly bracket), (4) ^ (caret), (5) ` (backquote), or (6) | (pipe) character, followed by an ampersand character.