MCAFEE FOUNDSTONE FSL UPDATE

(1)

2014-JUN-03

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release.

NEW CHECKS

16673 - Microsoft Internet Explorer WeakMap Integer Divide-by-Zero Denial of Service

Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS)

Risk Level: High Description

A vulnerability in some versions of Microsoft Internet Explorer could lead to a denial of service. Observation

A vulnerability in some versions of Microsoft Internet Explorer could lead to a denial of service.

The flaw is due to an unspecified defect. Successful exploitation by a remote attacker could result in a denial of service condition. 16661 - Intel Indeo Video ir41_32.ax Crafted File Denial of Service

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: Medium CVE: CVE-2014-3735 Description

A vulnerability in some versions of Intel Indeo Video could lead to a denial of service. Observation

A vulnerability in some versions of Intel Indeo Video could lead to a denial of service.

The flaw lies in ir41_32.ax. Successful exploitation by a remote attacker could result in a denial of service condition. 16671 - Apache Tomcat Multiple Vulnerabilities Prior To 6.0.41

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

CVE: CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119 Description

Multiple vulnerabilities are present in some versions of Apache Tomcat. Observation

Apache Tomcat is a Java application server.

(2)

exploitation could allow an attacker to obtain sensitive information or cause denial of service.

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check.

761 - PowerFTP Personal FTP Server Path Disclosure

Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: High

Check Version: 1.2 CVE: CVE-2001-0934 Update Details

Recommendation is updated.

780 - WebSitePro win-c-sample.exe Path Disclosure

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: High

852 - Oracle9iAS XSQLServlet XSQLConfig.xml disclosure

Check Version: 1.2

CVE: CVE-2002-0568, CVE-2002-0569 DISA IAVA: 2002-T-0006,2002-T-0005 Update Details

856 - Lotus Domino $defaultNav Information Disclosure

(3)

875 - Microsoft IIS Anonymous Write Permissions Enabled

Update Details

884 - Oracle WebDB Admin Backdoor Unauthorized Access

Check Version: 1.2 Update Details

908 - Microsoft IIS 4.0 /IISADMPWD/achg.htr Proxied Password Attack

934 - csMailto.cgi Command Execution

956 - Compaq Web-Based Management default page

CVE: CVE-2001-0374 Update Details

(4)

1224 - Sun Chili!Soft ASP Administration Console Default Password

1248 - Oracle Web Listener Batch File Command Execution

1876 - Perl logbook.pl Command Execution

3048 - Morpheus FastTrack Service Identity Spoofing Vulnerability

Risk Level: High Check Version: 1.2

CVE: CVE-2002-0314, CVE-2002-0315 Update Details

3290 - Linksys WAP55AG Wireless Access Point User Access Vulnerability

Category: Wireless Assessment -> NonIntrusive -> Wireless Risk Level: High

(5)

3382 - Campas CGI Script Information Leakage Vulnerability

3386 - AdCycle Build.cgi Web Script Allows Unauthorized Access

3393 - CCBill Arbitrary Code Execution Vulnerability

3767 - Upload Lite Arbitrary File Upload and Execution Vulnerability

3823 - Alt-N MDaemon Local Privilege Escalation

(6)

(CATEGORY REQUIRES CREDENTIALS) Risk Level: High

3884 - w3who.dll ISAPI Buffer Overflow

Category: General Vulnerability Assessment -> Intrusive -> Web Server Risk Level: High

Check Version: 1.1

4098 - Microsoft HTML Help Workshop Buffer Overflow vulnerability

Risk Level: High Check Version: 1.95 CVE: CVE-2006-0564 Update Details

4207 - BLNews Path Parameter Vulnerability

4285 - Nph-maillist Email Address Code Execution

Check Version: 1.2284 CVE: CVE-2001-0400

(7)

Update Details

4306 - Kootenay Web Whois Command Execution

4319 - GAMSoft TelSrv Long Username Denial of Service

Category: General Vulnerability Assessment -> Intrusive -> UNIX Risk Level: High

Check Version: 1.340

CVE: CVE-1999-0230, CVE-2000-0166, CVE-2000-0480, CVE-2000-0665, CVE-2001-0348 Update Details

4339 - MSN ActiveX Setup BBS Buffer Overflow

4723 - Microsoft Internet Explorer Window Injection Vulnerability

(8)

4754 - NetGear Wireless Driver Long Beacon Stack Overflow

4835 - Oracle Portal HTTP Response Splitting

Check Version: 1.1952

CVE: CVE-2006-6697, CVE-2006-6699, CVE-2006-6703 Update Details

4899 - Microsoft Visual Studio .CNT Buffer Overflow

4902 - Microsoft Help Workshop .CNT Files Buffer Overflow

4905 - Microsoft Visual Studio .HPJ Buffer Overflow

(9)

4984 - FactoSystem Weblog Multiple SQL Injection Vulnerabilities

4997 - Microsoft Windows Explorer DOC File Crash

5064 - Microsoft Word wwlib.dll Heap Buffer Overflow

5065 - Microsoft Windows HLP File Handling Heap Buffer Overflow

Risk Level: High Check Version: 1.2927 CVE: CVE-2007-1912

(10)

Update Details

5182 - Microsoft Internet Information Services Remote DoS

5218 - Microsoft Windows XP GDI+ .ICO Handling DoS Vulnerability

5242 - Microsoft Office MSODataSourceControl ActiveX Control Vulnerability

5431 - Microsoft Internet Explorer FTP Access Information Disclosure

(11)

5469 - VMware vstor-ws60.sys Vulnerability

5492 - Microsoft Windows Media Player HTML Backdooring Vulnerability

5495 - Sun JRE isInstalled.dnsResolve Overflow

5526 - Symantec Veritas Backup Exec For Windows Servers Unspecified Vulnerability

(12)

Risk Level: High CVE: CVE-2008-0098 Update Details

5671 - Microsoft Visual InterDev .sln Vulnerability

Risk Level: High

5836 - Microsoft Works WkImgSrv.dll ActiveX Vulnerability

5844 - Apple QuickTime Crafted MOV File Code Execution

5867 - Microsoft Internet Explorer Cross-Zone Scripting Vulnerability

(13)

5899 - Creative Software AutoUpdate Engine ActiveX Control Stack Overflow

6007 - Microsoft Internet Explorer Cookie Session Fixation

6139 - Apple Quicktime Stack_Cookie Stack Overflow Vulnerability

7256 - HP LoadRunner XUpload.ocx ActiveX Control Arbitrary File Download

7278 - Oracle Document Capture BlackIce DEVMODE ActiveX Control Remote Command Execution

(14)

Update Details

7638 - Oracle Document Capture EasyMail ActiveX Control Buffer Overflow Vulnerability

7930 - Oracle Times-Ten In-Memory Database Denial Of Service Vulnerability

Update Details

8139 - PHP 4 Userland ZVAL Reference Counter Integer Overflow Vulnerability

8198 - Microsoft IIS ASP.NET Cookie Header Information Disclosure Vulnerability

Update Details

8300 - Microsoft Internet Explorer Unspecified Heap Overflow Vulnerability (CVE-2010-1118)

(15)

8716 - XAMPP Insecure Default Password Disclosure Vulnerability

8724 - Unix Finger Service User Account Information Disclosure Vulnerability

Category: General Vulnerability Assessment -> NonIntrusive -> UNIX Risk Level: High

8725 - Unix Finger User Account Information Disclosure Vulnerability

Category: General Vulnerability Assessment -> NonIntrusive -> UNIX Risk Level: High

8764 - Perforce Server Multiple Vulnerabilities

CVE: CVE-2010-0929, CVE-2010-0930, CVE-2010-0931, CVE-2010-0932, CVE-2010-0933, CVE-2010-0934, CVE-2010-0935 Update Details

8800 - Open Flash Chart PHP Library Arbitrary File Creation Vulnerability

(16)

8872 - Callisto PhotoParade Player PhPInfo ActiveX Control Buffer Overflow Vulnerability

8919 - Macrovision InstallFromTheWeb Multiple Buffer Overflow Vulnerabilities

8942 - Nginx HTTP Server File Path Parse Vulnerability

Update Details

9155 - IBM Access Support ActiveX Control GetXMLValue Method Buffer Overflow Vulnerability

9270 - Microsoft Visual FoxPro FPOLE.OCX ActiveX Control Remote Command Execution Vulnerability

(17)

9340 - Microsoft SQL Server SQLExecutiveCmdExec Weak Password Encryption Vulnerability

Category: General Vulnerability Assessment -> NonIntrusive -> Windows Risk Level: High

9390 - IBM DB2 Shared Libraries Privilege Escalation Vulnerability

9603 - Oracle Application Server Arbitrary File Access Vulnerability

9635 - Oracle Application Server dbsnmp And nmo Programs Privilege Escalation Vulnerability

9667 - Allied Telesyn TFTP Server Long Filename Remote Buffer Overflow Vulnerability

Category: General Vulnerability Assessment -> Intrusive -> Miscellaneous Risk Level: High

(18)

9670 - Wind River Systems VxWorks WDB Target Agent Debug Service Vulnerability

CVE: CVE-2010-2965 DISA IAVA: 2010-B-0075 Update Details

9743 - FutureSoft TFTP Server 2000 Remote Denial Of Service Vulnerability

Update Details

9805 - Microsoft Windows 'win32k!GreStretchBltInternal()' Local Denial Of Service Vulnerability

Risk Level: High Update Details

9815 - SMTP Server Too Long Line Denial Of Service Vulnerability

Update Details

9831 - TFTPUtil GUI Long Transport Mode Buffer Overflow Vulnerability

(19)

9835 - ProSysInfo TFTP Server TFTPDWIN Long File Name Buffer Overflow Vulnerability

9945 - glFTPd Default Credentials Unauthorized Access Vulnerability

Category: General Vulnerability Assessment -> Intrusive -> UNIX Risk Level: High

10061 - Atrium Mercur Messaging IMAP Service Remote Buffer Overflow Vulnerability

10088 - GuildFTPd LIST and CWD Commands Heap Overflow Vulnerability

10129 - Open&Compact FTP Server Authentication Bypass Vulnerability

(20)

Update Details

10610 - Microsoft Internet Explorer 'window.onerror' Information Disclosure

10672 - GIGABYTE Dldrv2 ActiveX Control Multiple Vulnerabilities

Risk Level: High

10694 - WordPress Plugin fGallery SQL Injection Vulnerability

11008 - Microsoft Windows Ipv6 Router Advertisement Denial Of Service

11610 - WordPress Rating-Widget Plugin Multiple Cross-Site Scripting Vulnerabilities

(21)

11873 - Microsoft HTML Help Stack Overflow Remote Code Execution

11890 - Microsoft Reader Integer Overflow

11898 - Microsoft Reader Heap Overflow Denial of Service

11902 - Microsoft Reader NULL Byte Write Denial of Service

12012 - WordPress SocialGrid Plugin "default_services" Cross-Site Scripting Vulnerability

(22)

12097 - Quest Software Big Brother Arbitrary File Deletion Remote Code Execution

Update Details

12135 - WordPress Magazeen Theme Multiple Vulnerabilities

Update Details

12188 - HP 3COM/H3C Intelligent Management Center Img Recv Remote Code Execution

12577 - HP SiteScope Default Credentials Weaknesses

Update Details

12703 - Microsoft Windows wab32res.dll Insecure Library Loading Remote Code Execution

(23)

12708 - Sunway ForceControl YRWXls.ocx ActiveX Control Buffer Overflow Vulnerability

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Risk Level: High

Update Details

12709 - Sunway ForceControl SCADA SNMP NetDBServer Integer Signedness Buffer Overflow Remote Code Execution

Update Details

12798 - Sunway ForceControl SNMP NetDBServer Stack Buffer Overflow Remote Code Execution

Category: General Vulnerability Assessment -> Intrusive -> SCADA Risk Level: High

Update Details

12821 - OPC Systems.NET OPCSystemsService Denial Of Service Vulnerability

Update Details

12842 - Snort Report target Multiple Remote Command Execution Vulnerabilities

Update Details

12852 - A-Blog Sources Search.php SQL Injection Remote Code Execution

(24)

12875 - Oracle AutoVue AutoVueX ActiveX Control Remote Code Execution

12876 - Oracle AutoVue AutoVueX ActiveX Control ExportEdaBom Remote Code Execution

12877 - Oracle AutoVue AutoVueX ActiveX Control Export3DBom Remote Code Execution

12887 - IRAI AUTOMGEN Use-After-Free Multiple Remote Code Execution Vulnerabilities

Update Details

12897 - Microsoft Excel VBScript Validation Use After Free Vulnerability

(25)

12924 - Oracle DataDirect Multiple Native Wire Protocol ODBC Driver Buffer Overflow Remote Code Execution

12929 - HP Data Protector Media Operations Directory Traversal Remote Code Execution

12930 - HP Data Protector Media Operations Heap Buffer Overflow Remote Code Execution

12951 - Apple OS X Sandbox Predefined Profiles Bypass Remote Code Execution II

Category: SSH Module -> NonIntrusive -> Mac OS X Patches and Hotfixes Risk Level: High

12952 - Apple OS X Sandbox Predefined Profiles Bypass Remote Code Execution

(26)

12962 - Microsoft Excel Window2 Record Use After Free Remote Code Execution

13053 - Adobe Flash Player VulnDisco Step Ahead Remote Code Execution

Risk Level: High

13091 - Ipswitch WS TFTP Server Directory Traversal Information Disclosure

Update Details

13144 - Microsoft Windows Media Player Null Pointer Remote Denial Of Service

13182 - CoCSoft Stream Down Response Buffer Overflow Remote Code Execution

(27)

13370 - Novell GroupWise Messenger nmma.exe Login Memory Corruption Remote Code Execution

13371 - Novell GroupWise Messenger nmma.exe Arbitrary Memory Corruption Remote Code Execution

13383 - Beckhoff TwinCAT TCatScopeView SVW And SCP File Processing Remote Code Execution

Update Details

13423 - IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution

13424 - IBM Tivoli Provisioning Manager Express for Software Distribution Multiple SQL Injection Remote Code Execution

(28)

13435 - Apple Safari Plug-in Unloading Remote Code Execution

13579 - Microsoft Visual Studio Incremental Linker Integer Overflow Remote Code Execution

13733 - Tftpd32 DNS Server Denial Of Service Vulnerability

13735 - Microsoft Wordpad Doc File Null Pointer Denial of Service

13749 - Apple iOS Safari match() Buffer Denial of Service

(29)

13791 - Microsoft IIS 6.0 PHP Authentication Bypass Remote Code Execution

13792 - Microsoft IIS 7.5 .NET Authentication Bypass Remote Code Execution

13831 - PHP com_print_typeinfo Function Buffer Overflow Remote Code Execution

13986 - Apple iOS Safari match() Buffer Denial of Service

Category: Wireless Assessment -> NonIntrusive -> iOS Risk Level: High

Update Details

14076 - Windows Explorer BMP File Handling Vulnerability

(30)

14084 - Microsoft Index Service Ixsso.dll Denial of Service

14085 - KASKAD SCADA DAServer.exe Remote Code Execution

Update Details

14095 - Oracle Business Transaction Management Server FlashTunnelService Denial of Service

Update Details

14125 - HP Intelligent Management Center uam.exe Stack Buffer Overflow

14154 - EMC AutoStart Remote Code Execution

(31)

Update Details

14158 - EMC AlphaStor Remote Code Execution

Update Details

14181 - Oracle Business Transaction Management SOAP Web Service Directory Traversal Vulnerability

Update Details

14250 - QNX FTPD Denial of Service

Category: General Vulnerability Assessment -> NonIntrusive -> SCADA Risk Level: High

Update Details

14260 - CYME Power Engineering ChartFX Client Server ActiveX Control Array Indexing Remote Code Execution

14294 - Microsoft Office Picture Manager Memory Corruption Remote Code Execution

(32)

14324 - RealNetworks RealPlayer 3GP File Handling Remote Code Execution

14352 - Microsoft Office Excel WriteAV Remote Code Execution

14452 - Sunsolve sscd_suncourier.pl Vulnerability

14455 - WordPress AdWizz Plugin "link" Cross-Site Scripting Vulnerability

Update Details

14515 - VideoLAN VLC Media Player SWF File Remote Code Execution

14527 - Adobe Flash Player FLV File Remote Code Execution

(33)

14539 - Adobe Shockwave Player Multiple Remote Code Execution Vulnerabilities

Risk Level: High

14540 - Microsoft Internet Explorer Remote Stack Overflow Vulnerability

14789 - Oracle Java SE Reflection API Remote Code Execution I

14790 - Oracle Java SE Reflection API Remote Code Execution II

14806 - HMS Netbiter Config Utility Denial of Service

(34)

Update Details

14865 - Kaspersky Internet Security Kaspersky Anti-Virus NDIS 6 Filter Denial of Service Vulnerability

Category: Windows Host Assessment -> Anti-Virus Software (CATEGORY REQUIRES CREDENTIALS)

14922 - PostgreSQL Command-Line Switch Error Messages Data Directory Denial of Service

15010 - Schneider Electric Vijeo Web Gate Server Denial Of Service

Update Details

15105 - MOXA Mass Configuration Tool Denial of Service

Update Details

15303 - MOXA AWK Search Utility Denial of Service

(35)

15423 - DotNetNuke DNNArticle Module "categoryid" SQL Injection Vulnerability

15542 - (MS13-067) Microsoft SharePoint MAC Disabled Remote Code Execution (2834052)

Risk Level: High CVE: CVE-2013-1330 DISA IAVA: 2013-A-0174 Microsoft ID: MS13-067 Microsoft KB: 2834052 Update Details

15780 - EATON VURemote Denial of Service

Update Details

15782 - Moore Industries NCS Configuration Denial of Service

Update Details

15794 - McAfee Web Reporter Tomcat EJBInvokerServlet Marshalled Object Remote Code Execution

(36)

15845 - NETGEAR WNDR3700v4 ping6 Diagnostic Page Command Injection Vulnerability

Update Details

15905 - FirebirdSQL Firebird Null Pointer Denial of Service I

15960 - Symantec Workspace Streaming EJBInvokerServlet / JMXInvokerServlet Marshalled Object Vulnerability

15975 - Microsoft Word Embedded Image Fork Bomb Denial of Service

16164 - McAfee Email Gateway Multiple SQL Injection and Remote Command Execution Vulnerabilities

(37)

Update Details

16205 - HP 2620 Switches /html/json.html Admin Account Manipulation Cross-Site Request Forgery

Category: General Vulnerability Assessment -> NonIntrusive -> Network Risk Level: High

16258 - Eaton Network Shutdown Module Pi3Web WebServer Denial of Service

Category: General Vulnerability Assessment -> NonIntrusive -> SCADA Risk Level: High

Update Details

16262 - Inductive Automation Ignition Gateway OPC-UA Server Denial of Service

Update Details

16426 - Linksys Multiple E-Series Routers Security Bypass Vulnerability

16445 - Delta Electronics WPLSoft DVPSimulator.exe Buffer Overflow Remote Code Execution

Category: General Vulnerability Assessment -> Intrusive -> SCADA Risk Level: High

Update Details

(38)

16463 - Adobe Reader Multiple Remote Code Execution Vulnerabilities

Risk Level: High

CVE: CVE-2014-0511, CVE-2014-0512 DISA IAVA: 2014-A-0070

Update Details

16558 - Microsoft Windows Unspecified Flaw Kernel Local Privilege Escalation

16559 - Microsoft Internet Explorer Multiple Sandbox Bypass and Use-After-Free Vulnerabilities

Risk Level: High

CVE: CVE-2014-1762, CVE-2014-1763, CVE-2014-1764, CVE-2014-1765 Update Details

16584 - McAfee Email And Web Security Appliance Multiple Unspecified Vulnerabilities

Update Details

16620 - Paessler PRTG Network Monitor Server.exe Denial of Service

Update Details

(39)

16628 - FrameFlow Server Monitor Unspecified Defect Denial Of Service

Update Details

16632 - VideoLAN VLC Media Player libpng_plugin.dll Denial of Service

16641 - Nullsoft Winamp Malformed .FLV File Remote Code Execution

16648 - RealNetworks RealPlayer GetGUID Function Remote Code Execution

16651 - IceWarp Mail Server Preauth Buffer Overflow Remote Code Execution

Update Details

(40)

38132 - Apple QuickTime Crafted MOV File Code Execution

38159 - Apple Quicktime Stack_Cookie Stack Overflow Vulnerability

38208 - Apple Mac OS X AppleTalk 'zip-notify' Buffer Overflow Vulnerability

87313 - Fedora Linux 16 FEDORA-2013-1130 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High

Risk is updated.

CVE: CVE-2013-1397 Update Details Risk is updated.

(41)

642 - Microsoft IIS ExAir Denial-of-Service

762 - PowerFTP Personal FTP Server Directory Disclosure Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: Medium

(42)

763 - PowerFTP Personal FTP Server Tilde Denial-of-Service Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: Medium

826 - D-Link DWL-1000AP Wireless Access Point SNMP Public Community String Category: Wireless Assessment -> NonIntrusive -> Wireless

Risk Level: Medium Check Version: 1.2 CVE: CVE-2001-1221 Update Details

845 - Apache Win32 PHP.EXE Remote File Disclosure

859 - Compaq Survey Utility Anonymous Login

872 - Lotus Domino Web Server statrep.nsf Anonymous Access Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

(43)

935 - FormMail.pl Detected

937 - Apple Airport Base Station WEP Key Disclosure Category: Wireless Assessment -> NonIntrusive -> Wireless Risk Level: Medium

1014 - Microsoft ASP.NET Application Trace Enabled

Update Details

1039 - Omnicron OmniHTTPd Long Request Buffer Overflow Category: General Vulnerability Assessment -> Intrusive -> Web Server Risk Level: Medium

1041 - MyWebServer Buffer Overflow

Category: General Vulnerability Assessment -> Intrusive -> Web Server Risk Level: Medium

(44)

1056 - Multiple Vendor Access Point Information Leakage Category: Wireless Assessment -> NonIntrusive -> Wireless

Risk Level: Medium Check Version: 1.2 Update Details

1212 - RedHat Linux Apache Remote Username Enumeration Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

1408 - Novell NetWare Webservers Denial-of-Service

1413 - Sun JavaServer Default Admin Password

1956 - Intel Express 8100 Router Fragmented ICMP Denial-of-Service Category: General Vulnerability Assessment -> NonIntrusive -> Network

(45)

1958 - Efficient Networks 5861 Router NMap Denial-of-Service Category: General Vulnerability Assessment -> NonIntrusive -> Network Risk Level: Medium

1965 - Lucent Router UDP Information Disclosure

Category: General Vulnerability Assessment -> NonIntrusive -> Network Risk Level: Medium

2367 - Sun Java App Server PE 8.0 Path Disclosure

Update Details

3012 - 3com 3CDaemon FTP Remote Format String

Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: Medium

3052 - Grokster FastTrack P2P Supernode Packet Handler Buffer Overrun Category: Windows Host Assessment -> Miscellaneous

(CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium

Check Version: 1.2 CVE: CVE-2003-0397

(46)

Update Details

3053 - IMesh FastTrack P2P Supernode Packet Handler Buffer Overrun Category: Windows Host Assessment -> Miscellaneous

3054 - Morpheus FastTrack P2P Supernode Packet Handler Buffer Overrun Category: Windows Host Assessment -> Miscellaneous

3055 - Kazaa FastTrack P2P Supernode Packet Handler Buffer Overrun Category: Windows Host Assessment -> Miscellaneous

3180 - RealPlayer RealMedia ".rm" Security Bypass Vulnerability Category: Windows Host Assessment -> Miscellaneous

(47)

3372 - Abe Zimmerman xml.cgi Remote File Disclosure Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

3861 - Home FTP Information Disclosure Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: Medium Check Version: 1.935

CVE: CVE-2005-2726, CVE-2005-2727, CVE-2006-0355, CVE-2006-0356 Update Details

4173 - Visual Studio 6.0 Project Name Buffer Overflow Vulnerability Category: Windows Host Assessment -> Miscellaneous

4227 - AlienForm2 Directory Traversal Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> UNIX Risk Level: Medium

4295 - Way-BOARD CGI Information Disclosure

(48)

4299 - BroadVision One-To-One Enterprise Information Disclosure Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

4307 - Armada Master Index search.cgi Directory Traversal Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

4329 - WindMail Metacharacter Vulnerability

4330 - Caldera OpenLinux rpm_query Vulnerability

(49)

4335 - PowerScripts PlusMail CGI password file Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

4345 - OmniHTTPD visadmin.exe Denial of Service

4348 - Alibaba web server CGI Vulnerability

4721 - Microsoft Internet Explorer Popup Address Bar Spoofing Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

4973 - Microsoft Internet Explorer HTML Tag Information Disclosure Category: Windows Host Assessment -> Patches and Hotfixes

(50)

4986 - Microsoft Windows Vista Local Privilege Escalation Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

5433 - Microsoft DXMedia SDK ActiveX Remote Code Execution Category: Windows Host Assessment -> Miscellaneous

5457 - Microsoft Internet Saved Web Page Cross-Site Scripting Category: Windows Host Assessment -> Miscellaneous

5458 - Sony MicroVault USB Fingerprint Hidden Folder Vulnerability Category: Windows Host Assessment -> Trojans, Backdoors, Viruses, and Malware (CATEGORY REQUIRES CREDENTIALS)

(51)

5488 - Microsoft Visual Studio PDWizard Remote Code Execution Category: Windows Host Assessment -> Miscellaneous

5511 - Microsoft Internet Explorer OnKeyDown Focus Information Disclosure Category: Windows Host Assessment -> Miscellaneous

5540 - Xunlei Web Thunder DPClient.Vod.1 ActiveX Vulnerability Category: Windows Host Assessment -> Miscellaneous

5563 - Mozilla Firefox Data URL Scheme Design Flaw Category: Windows Host Assessment -> Miscellaneous

(52)

5601 - Microsoft Windows Pseudo-Random Number Generator Design Flaw Category: Windows Host Assessment -> Miscellaneous

5888 - Mozilla Firefox JSFrame Vulnerability Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: Medium CVE: CVE-2008-2419 Update Details

6006 - Yahoo Messenger VBscript Remote Denial of Service Category: Windows Host Assessment -> Miscellaneous

Update Details

6242 - Microsoft Windows Vista TCP/IP Buffer Overflow Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

(53)

6558 - Mozilla Firefox XUL/XML Parser Corruption Vulnerability Category: Windows Host Assessment -> Miscellaneous

6567 - Mozilla Firefox location.hash Denial-of-Service Vulnerability Category: Windows Host Assessment -> Miscellaneous

6626 - Safari For Windows XML Tag Denial Of Service Vulnerability Category: Windows Host Assessment -> Miscellaneous

6980 - Apache HTTPD suexec Multiple Local Privilege Escalation Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

Risk Level: Medium

CVE: CVE-2007-1741, CVE-2007-1742, CVE-2007-1743 Update Details

6982 - Microsoft Internet Explorer findText Parsing Denial-of-Service Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

(54)

Update Details

7129 - Microsoft Wordpad Memory Exhaustion Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

Update Details

7139 - Microsoft Internet Explorer URL Spoofing Vulnerability Category: Windows Host Assessment -> Patches and Hotfixes

7750 - Oracle Reports Server Multiple Cross Site Scripting Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

8095 - IBM Lotus Domino Server nserver.exe Crash Denial Of Service Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: Medium

8126 - Apache mod_perl File Descriptor Leakage Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

(55)

8129 - Apache HTTP Server mod_rewrite Security Bypass Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

8205 - Sendmail Long IDENT Logging Circumvention Weakness Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> UNIX

8213 - Microsoft Virtual PC Hypervisor Memory Protection Security Bypass Vulnerability Category: Windows Host Assessment -> Miscellaneous

Update Details

8233 - Microsoft IIS CodeBrws.ASP File Extension Check Out By One Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

8299 - Microsoft Internet Explorer Unspecified Heap Overflow Vulnerability (CVE-2010-1117) Category: Windows Host Assessment -> Patches and Hotfixes

(56)

8380 - Microsoft IIS Sample Application Cross Site Scripting Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

Risk Level: Medium Update Details

8499 - Sun Java System Directory Server LDAP Search Request Denial Of Service Vulnerability Category: General Vulnerability Assessment -> Intrusive -> Miscellaneous

8502 - Microsoft Office Communicator (Beta) SIP Denial Of Service Vulnerability Category: Windows Host Assessment -> Miscellaneous

Update Details

8634 - Sun Java System Web Server WebDAV LOCK Request File Disclosure Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

Risk Level: Medium Update Details

8666 - Cisco IOS HTTP Server Cross Site Scripting Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Network Risk Level: Medium