This paper is the result of various security assessments performed on several CheckPoint/SofaWare firewalls in both a controlled (computer lab) and production environments during several penetration tests. Several different CheckPoint/SofaWare firewall models were purchased for testing in their computer lab. By having full access to the target devices, it becomes possible to discover new vulnerabilities that could be missed during a standard unauthenticated penetration test.
c35375f660fa53fbebaaebb25ec6173e990a9bc1e26ffd2917339ccfbf6a2454
DCForum web conference software leaves a file with user information including passwords in the document root.
410b8716c8db53421bd4da537ccbc1c8317423f6334bb0ecb93c27889e139527
Apple Security Advisory 2012-11-01-2 - Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.
8da82b760fa99acaf590f81a49c7fe3c1f426b36a77fd487b5dc79cad3d98fd3
Mandriva Linux Security Advisory 2012-170 - Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to shadow the location object, which makes it easier for remote attackers to conduct cross-site scripting attacks via vectors involving a plugin. The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 does not properly determine the calling document and principal in its return value, which makes it easier for remote attackers to conduct cross-site scripting attacks via a crafted web site, and makes it easier for remote attackers to execute arbitrary JavaScript code by leveraging certain add-on behavior. Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same Origin Policy and read the Location object via a prototype property-injection attack that defeats certain protection mechanisms for this object. The mozilla firefox packages has been upgraded to the latest version which is unaffected by these security flaws.
df5698b16c02425b5dc4629ca3098d7de69fc065a4cbafaa2ba5da169a673dea
Splunk version 4.3.x suffers from a denial of service hash table vulnerability.
d5cbcf654bede60e73b046c746c6d6c0a805b9e9a6f72f4af8548cd3f36fa296
HP Security Bulletin HPSBMU02815 SSRT100715 4 - Potential security vulnerabilities have been identified with HP SiteScope. The vulnerabilities in SiteScope SOAP features could be remotely exploited to allow disclosure of information or code execution. Revision 4 of this advisory.
abeda3401855f751a432b29ae51842f813aa92f93ff1ff7418e84821e956634e
HP Security Bulletin HPSBMU02827 SSRT100924 - Potential security vulnerabilities have been identified with HP Performance Insight when using Sybase as the database. The vulnerabilities could be remotely exploited to allow remote denial of service (DoS) and loss of data. Revision 1 of this advisory.
413dfefa94e7b73b1b50ade7370a4846fd084ec4d371868c5f97d72f71a0932d
HP Security Bulletin HPSBUX02824 SSRT100970 2 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX.These vulnerabilities could allow remote execution of arbitrary code and other vulnerabilities. Revision 2 of this advisory.
2ec3aa87e1b79d4f333300ca6e1febbfc596b53a6b7d55d6348707edcd684d92
Apple Security Advisory 2012-11-01-1 - iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.
bb29a1d3c66440c76260fdaa5d43c43b2293e2d6e250d392f4373a39f3dd8dcd
CheckPoint/Sofaware firewalls suffer from redirection, cross site request forgery, cross site scripting, and information disclosure vulnerabilities.
5ae76cdada41d919af4e21bd1b0d36824ad80b60a77057ebb204db615d421663
eM Client 4 ships with deprecated and vulnerable Microsoft Visual C++ 2008 runtime DLLs.
6b09813e63424906cd88cf7e406e13caa79e7f3a4fc8f530ead65701b478e952
The Kindsight Security Labs Q3 2012 Malware Report examines general trends for malware infections in home networks or infections in mobile devices and computers connected through mobile adapters. The data in this report is aggregated across the networks where Kindsight solutions are deployed.
4358fac16115036cd5347643c7df24ea0a1c9963e8d996174c8561f908070ef5
vBulletin ChangUonDyU Advanced Statistics suffers from a remote SQL injection vulnerability.
dfddaf215a60127d0a5b03a40f8478952e2141992d8ed19886c76c73038ff2b3
Adobe Reader version 11.0.0 suffers from a stack exhaustion vulnerability.
5f7ddd9bf90517ae0acacadaed88adf3e8c6ecf0e4a00e7a0c49388fc9fb7f73
Sites designed by YSD suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
28a44c1ca856ab654db908d94f979b2728372de4553cd034a7c3fb15ac5307ea
Secunia Security Advisory - Two vulnerabilities have been reported in MosP, which can be exploited by malicious users to bypass certain security restrictions.
2ea53909cf9e15ae9b3ffde7d6ade99fc837c8d2acd5ce807e6a9510e291de0a
Secunia Security Advisory - A vulnerability has been reported in PgBouncer, which can be exploited by malicious users to cause a DoS (Denial of Service).
74e5e2c6d5b943d1ef0f46b064db728a2b53d94f333710dfee28bdd2acbfe5a7
Secunia Security Advisory - A vulnerability has been reported in ManageEngine SupportCenter Plus, which can be exploited by malicious users to conduct script insertion attacks.
e2c62ea132fd39cf8f94005737145fbfff0443e642e0d4d0c9a6ef0d072ab3df
Secunia Security Advisory - Marcela Benetrix has discovered multiple vulnerabilities in Dokeos, which can be exploited by malicious users to conduct script insertion attacks.
d1e602e9e1f7c86986646e2bf1a6403011bdfd70e64672acabe8379142eaafcf
Secunia Security Advisory - Charlie Eriksen has discovered two vulnerabilities in the All Video Gallery plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
9ab70767e66aa6e8815c445c0d9e8bf0cd05b3f34eecda5ec7b4b0d09cbde1a9
Secunia Security Advisory - Two vulnerabilities have been reported in the Spider Catalog plugin for WordPress, which can be exploited by malicious people to conduct script insertion attacks.
659a382bf797271a5302c6a6fe3791767c64184ed8d95ae02f2925a03f963ceb
Secunia Security Advisory - A vulnerability has been discovered in the Follower User plugin for MyBB, which can be exploited by malicious users to conduct SQL injection attacks.
b6309744b602f940cf99e1b5269d4c627eb906515f6a29aad6fa649baf6f8fca
Secunia Security Advisory - Matan Azugi has reported a vulnerability in the TP-LINK TL-WR841N Router, which can be exploited by malicious people to disclose potentially sensitive information.
a2cf8a267b181cce1fe8bc639e6f4961bac4de4cb3bf936a7a58aaca6f634640
Secunia Security Advisory - Two vulnerabilities have been reported in HP Performance Insight, which can be exploited by malicious people to disclose certain sensitive information and cause a DoS (Denial of Service).
9178a9b63e7e6aca359971d929c3cdb5cb44476ce9ba0c3823791f7ad9c2d0ea
Secunia Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to compromise a user's system.
6869f37b575b1d5778b2a707b95942384927cfabec8378afbdeca5c28d48cac2