Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в Asterisk
Опубликовано:1 апреля 2013 г.
Источник:
SecurityVulns ID:12974
Тип:удаленная
Уровень опасности:
7/10
Описание:Утечка информации и переполнение буфера в SIP, DoS.
Затронутые продукты:ASTERISK : Asterisk 11.2
CVE:CVE-2013-2686 (main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.)
 CVE-2013-2685 (Stack-based buffer overflow in res/res_format_attr_h264.c in Asterisk Open Source 11.x before 11.2.2 allows remote attackers to execute arbitrary code via a long sprop-parameter-sets H.264 media attribute in a SIP Session Description Protocol (SDP) header.)
 CVE-2013-2264 (The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition (BE) C.3.x before C.3.8.1; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones exhibits different behavior for invalid INVITE, SUBSCRIBE, and REGISTER transactions depending on whether the user account exists, which allows remote attackers to enumerate account names by (1) reading HTTP status codes, (2) reading additional text in a 403 (aka Forbidden) response, or (3) observing whether certain retransmissions occur.)
Оригинальный текстdocumentASTERISK, AST-2013-003: Username disclosure in SIP channel driver (01.04.2013)
 documentASTERISK, AST-2013-002: Denial of Service in HTTP server (01.04.2013)
 documentASTERISK, AST-2013-001: Buffer Overflow Exploit Through SIP SDP Header (01.04.2013)

Уязвимости безопасности в EMC Smarts
Опубликовано:1 апреля 2013 г.
Источник:
SecurityVulns ID:12975
Тип:удаленная
Уровень опасности:
5/10
Описание:Межсайтовый скриптинг в различных приложениях, обход авторизации в Smarts Network Configuration Manager.
Затронутые продукты:EMC : Smarts 9.2
CVE:CVE-2013-0936 (Cross-site scripting (XSS) vulnerability in EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager, Smarts VoIP Availability Manager, Smarts Network Protocol Manager, and Smarts MPLS Manager before 9.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.)
 CVE-2013-0935 (EMC Smarts Network Configuration Manager (NCM) before 9.2 does not require authentication for all Java RMI method calls, which allows remote attackers to execute arbitrary code via unspecified vectors.)
Оригинальный текстdocumentEMC, ESA-2013-016: EMC Smarts Network Configuration Manager (01.04.2013)
 documentEMC, ESA-2013-018: EMC Smarts Product - Cross Site Scripting Vulnerability (01.04.2013)

DoS против bind / dhpc
Опубликовано:1 апреля 2013 г.
Источник:
SecurityVulns ID:12973
Тип:удаленная
Уровень опасности:
5/10
Описание:Исчерпание ресурсов при проверке RDATA по регулярным выражениям.
Затронутые продукты:DHCP : dhcp 4.2
 BIND : bind 9.8
 ISC : bind 9.9
 BIND : bind 9.7
CVE:CVE-2013-2266 (libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memory consumption) via a crafted regular expression, as demonstrated by a memory-exhaustion attack against a machine running a named process.)
Оригинальный текстdocumentSLACKWARE, [slackware-security] dhcp (SSA:2013-086-02) (01.04.2013)
 documentUBUNTU, [USN-1783-1] Bind vulnerability (01.04.2013)

Межсайтовый скриптинг в IBM Lotus Domino
дополнено с 2 сентября 2012 г.
Опубликовано:1 апреля 2013 г.
Источник:
SecurityVulns ID:12564
Тип:удаленная
Уровень опасности:
5/10
Описание:Межсайтовый скриптинг и Response Splitting.
Затронутые продукты:IBM : Lotus Domino 8.5
CVE:CVE-2012-3302 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL accessed during use of Domino Help through the Domino HTTP server.)
 CVE-2012-3301 (Multiple CRLF injection vulnerabilities in the HTTP server in IBM Lotus Domino 8.5.x before 8.5.4 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input involving (1) Mozilla Firefox 3.0.9 and earlier or (2) unspecified browsers.)
Оригинальный текстdocumentMustLive, Multiple XSS vulnerabilities in IBM Lotus Domino (01.04.2013)
 documentMustLive, HTTP Response Splitting and XSS vulnerabilities in IBM Lotus Domino (09.09.2012)
 documentMustLive, XSS and IL vulnerabilities in IBM Lotus Domino (03.09.2012)
 documentMustLive, IBM Lotus Domino Cross-Site Scripting and HTTP Response Splitting vulnerabilities (02.09.2012)
Файлы:IBM Security Bulletin: Aug-2012 IBM Lotus Domino Web Server Cross-Site Scripting Vulnerabilities

Утечка информации в HP XP P9000
Опубликовано:1 апреля 2013 г.
Источник:
SecurityVulns ID:12977
Тип:удаленная
Уровень опасности:
5/10
Затронутые продукты:HP : HP P9000
CVE:CVE-2012-0053 (protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.)
Оригинальный текстdocumentHP, [security bulletin] HPSBST02848 SSRT101112 rev.1 - HP XP P9000 Command View Advanced Edition Suite Products, Remote Disclosure of Information (01.04.2013)

Многочисленные уязвимости безопасности в Cisco IOS
дополнено с 1 апреля 2013 г.
Опубликовано:15 апреля 2013 г.
Источник:
SecurityVulns ID:12976
Тип:удаленная
Уровень опасности:
6/10
Описание:DoS через RSVP, DoS через IKE, DoS в реализации NAT, DoS в Smart Install, DoS в SPT, DoS в IP SLA, DoS в SIP.
Затронутые продукты:CISCO : IOS 12.2
 CISCO : IOS 12.3
 CISCO : IOS 12.4
 CISCO : IOS 15.0
 CISCO : IOS 15.1
 CISCO : IOS XE 3.1
 CISCO : IOS 15.2
 CISCO : IOS XE 3.3
 CISCO : IOS XE 3.2
 CISCO : IOS XE 3.4
 CISCO : IOS XE 3.5
 CISCO : IOS 15.5
 CISCO : IOS 15.3
 CISCO : IOS XE 3.6
 CISCO : IOS XE 3.7
CVE:CVE-2013-1167 (Cisco IOS XE 3.2 through 3.4 before 3.4.2S, and 3.5, on 1000 series Aggregation Services Routers (ASR), when bridge domain interface (BDI) is enabled, allows remote attackers to cause a denial of service (card reload) via packets that are not properly handled during the processing of encapsulation, aka Bug ID CSCtt11558.)
 CVE-2013-1166 (Cisco IOS XE 3.2 through 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR), when VRF-aware NAT and SIP ALG are enabled, allows remote attackers to cause a denial of service (card reload) by sending many SIP packets, aka Bug ID CSCuc65609.)
 CVE-2013-1165 (Cisco IOS XE 2.x and 3.x before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR) allows remote attackers to cause a denial of service (card reload) by sending many crafted L2TP packets, aka Bug ID CSCtz23293.)
 CVE-2013-1164 (Cisco IOS XE 3.4 before 3.4.4S, 3.5, and 3.6 on 1000 series Aggregation Services Routers (ASR) does not properly implement the Cisco Multicast Leaf Recycle Elimination (MLRE) feature, which allows remote attackers to cause a denial of service (card reload) via fragmented IPv6 multicast packets, aka Bug ID CSCtz97563.)
 CVE-2013-1148 (The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594.)
 CVE-2013-1147 (The Protocol Translation (PT) functionality in Cisco IOS 12.3 through 12.4 and 15.0 through 15.3, when one-step port-23 translation or a Telnet-to-PAD ruleset is configured, does not properly validate TCP connection information, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a PT resource, aka Bug ID CSCtz35999.)
 CVE-2013-1146 (The Smart Install client functionality in Cisco IOS 12.2 and 15.0 through 15.3 on Catalyst switches allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790.)
 CVE-2013-1145 (Memory leak in Cisco IOS 12.2, 12.4, 15.0, and 15.1, when Zone-Based Policy Firewall SIP application layer gateway inspection is enabled, allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed SIP messages, aka Bug ID CSCtl99174.)
 CVE-2013-1144 (Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote attackers to cause a denial of service (memory consumption) via unspecified (1) IPv4 or (2) IPv6 IKE packets, aka Bug ID CSCth81055.)
 CVE-2013-1143 (The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957.)
 CVE-2013-1142 (Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 allows remote attackers to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745.)
Файлы:Cisco IOS Software Zone-Based Policy Firewall Session Initiation Protocol Inspection Denial of Service Vulnerability
 Cisco IOS Software IP Service Level Agreement Vulnerability
 Cisco IOS Software Protocol Translation Vulnerability
 Cisco IOS Software Smart Install Denial of Service Vulnerability
 Cisco IOS Software Network Address Translation Vulnerability
 Cisco IOS Software Internet Key Exchange Vulnerability
 Cisco IOS Software Resource Reservation Protocol Denial of Service Vulnerability
 Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород