NIPC CyberNotes #2002-12 Page 19 of 33 06/17/2002
Vendor
Operating
System
Software
Name
Vulnerability/
Impact
Patches/Workarounds/
Alerts
Common
Name
Risk*
Attacks/
Scripts
Stephen
Hebditch
82
Unix slurp 1.10 A format string vulnerability
exists in the syslog function,
which could let a remote
malicious user execute
arbitrary code.
No workaround or patch
available at time of
publishing.
Slurp
Remote Format
String
High
Bug discussed
in newsgroups
and websites.
Proof of
Concept
exploit has
been published.
Sun Micro-
Systems,
Inc.
83
Unix Sun Solaris
2.6 _x86,
2.6, 7.0
_x86, 7.0,
8.0 _x86,
8.0
Two vulnerabilities exist: a
format string vulnerability
exists in the ‘snmpdx’
component, which could let a
remote malicious user execute
arbitrary code with root
privileges; and a buffer
overflow vulnerability exists
in ‘mibiisa’ due to an unsafe
memory copy operation,
which could let a malicious
user overwrite the return
address with an arbitrary
value.
Patch available at:
http://sunsolve.sun.com/secu
ritypatch
Sun Solaris
snmpdx
Format String
& mibiisa
Remote Buffer
Overflow
High
Bug discussed
in newsgroups
and websites.
Teekai
84
Multiple Forum 1.2 Several vulnerabilities exist: a
vulnerability exists because
user cookies are stored in a
non-encrypted format, which
could let a malicious user
obtain unauthorized access
including the administrative
account; and a vulnerability
exists due to weak encryption
of web usage statistics, which
could let a remote malicious
user obtain sensitive
information.
No workaround or patch
available at time of
publishing.
Forum
Multiple
Vulnerabilities
Medium/
High
(High if
adminis-
trative
access
can be
obtained)
Bug discussed
in newsgroups
and websites.
Exploit has
been published
for the web
statistics weak
encryption
vulnerability.
Teekai
85
Multiple Tracking
Online 1.0
A Cross-Site Scripting
vulnerability exists because
HTML tags are not adequately
filtered from certain URL
parameters, which could let a
malicious user create an
arbitrary link to a vulnerable
webpage.
No workaround or patch
available at time of
publishing.
Tracking
Online
Cross-Site
Scripting
Medium Bug discussed
in newsgroups
and websites.
Exploit has
been published.
Telindus
86
Multiple 1110
ADSL
Router ,
1120
ADSL
Router
A vulnerability exists because
the password is sent in plain
text when connecting to the
router via the administrative
software, which could let a
remote malicious user obtain
sensitive information.
No workaround or patch
available at time of
publishing.
1100 Series
Router
Administration
Password Leak
Medium Bug discussed
in newsgroups
and websites.
There is no
exploit code
required.
82
Strategic Reconnaissance Team Security Advisory, SRT2002-06-04-1011, June 4, 2002.
83
Sun Microsystems, Inc. Security Bulletin, #00219, June 4, 2002.
84
SecurityFocus, June 3, 2002.
85
SecurityFocus, June 3, 2002.
86
Bugtraq, June 5, 2002.
(51 strony)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji