This paper is the result of various security assessments performed on several CheckPoint/SofaWare firewalls in both a controlled (computer lab) and production environments during several penetration tests. Several different CheckPoint/SofaWare firewall models were purchased for testing in their computer lab. By having full access to the target devices, it becomes possible to discover new vulnerabilities that could be missed during a standard unauthenticated penetration test.
c35375f660fa53fbebaaebb25ec6173e990a9bc1e26ffd2917339ccfbf6a2454DCForum web conference software leaves a file with user information including passwords in the document root.
410b8716c8db53421bd4da537ccbc1c8317423f6334bb0ecb93c27889e139527Apple Security Advisory 2012-11-01-2 - Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.
8da82b760fa99acaf590f81a49c7fe3c1f426b36a77fd487b5dc79cad3d98fd3Mandriva Linux Security Advisory 2012-170 - Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to shadow the location object, which makes it easier for remote attackers to conduct cross-site scripting attacks via vectors involving a plugin. The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 does not properly determine the calling document and principal in its return value, which makes it easier for remote attackers to conduct cross-site scripting attacks via a crafted web site, and makes it easier for remote attackers to execute arbitrary JavaScript code by leveraging certain add-on behavior. Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same Origin Policy and read the Location object via a prototype property-injection attack that defeats certain protection mechanisms for this object. The mozilla firefox packages has been upgraded to the latest version which is unaffected by these security flaws.
df5698b16c02425b5dc4629ca3098d7de69fc065a4cbafaa2ba5da169a673deaSplunk version 4.3.x suffers from a denial of service hash table vulnerability.
d5cbcf654bede60e73b046c746c6d6c0a805b9e9a6f72f4af8548cd3f36fa296HP Security Bulletin HPSBMU02815 SSRT100715 4 - Potential security vulnerabilities have been identified with HP SiteScope. The vulnerabilities in SiteScope SOAP features could be remotely exploited to allow disclosure of information or code execution. Revision 4 of this advisory.
abeda3401855f751a432b29ae51842f813aa92f93ff1ff7418e84821e956634eHP Security Bulletin HPSBMU02827 SSRT100924 - Potential security vulnerabilities have been identified with HP Performance Insight when using Sybase as the database. The vulnerabilities could be remotely exploited to allow remote denial of service (DoS) and loss of data. Revision 1 of this advisory.
413dfefa94e7b73b1b50ade7370a4846fd084ec4d371868c5f97d72f71a0932dHP Security Bulletin HPSBUX02824 SSRT100970 2 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX.These vulnerabilities could allow remote execution of arbitrary code and other vulnerabilities. Revision 2 of this advisory.
2ec3aa87e1b79d4f333300ca6e1febbfc596b53a6b7d55d6348707edcd684d92Apple Security Advisory 2012-11-01-1 - iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.
bb29a1d3c66440c76260fdaa5d43c43b2293e2d6e250d392f4373a39f3dd8dcdCheckPoint/Sofaware firewalls suffer from redirection, cross site request forgery, cross site scripting, and information disclosure vulnerabilities.
5ae76cdada41d919af4e21bd1b0d36824ad80b60a77057ebb204db615d421663eM Client 4 ships with deprecated and vulnerable Microsoft Visual C++ 2008 runtime DLLs.
6b09813e63424906cd88cf7e406e13caa79e7f3a4fc8f530ead65701b478e952The Kindsight Security Labs Q3 2012 Malware Report examines general trends for malware infections in home networks or infections in mobile devices and computers connected through mobile adapters. The data in this report is aggregated across the networks where Kindsight solutions are deployed.
4358fac16115036cd5347643c7df24ea0a1c9963e8d996174c8561f908070ef5vBulletin ChangUonDyU Advanced Statistics suffers from a remote SQL injection vulnerability.
dfddaf215a60127d0a5b03a40f8478952e2141992d8ed19886c76c73038ff2b3Adobe Reader version 11.0.0 suffers from a stack exhaustion vulnerability.
5f7ddd9bf90517ae0acacadaed88adf3e8c6ecf0e4a00e7a0c49388fc9fb7f73Sites designed by YSD suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
28a44c1ca856ab654db908d94f979b2728372de4553cd034a7c3fb15ac5307eaSecunia Security Advisory - Two vulnerabilities have been reported in MosP, which can be exploited by malicious users to bypass certain security restrictions.
2ea53909cf9e15ae9b3ffde7d6ade99fc837c8d2acd5ce807e6a9510e291de0aSecunia Security Advisory - A vulnerability has been reported in PgBouncer, which can be exploited by malicious users to cause a DoS (Denial of Service).
74e5e2c6d5b943d1ef0f46b064db728a2b53d94f333710dfee28bdd2acbfe5a7Secunia Security Advisory - A vulnerability has been reported in ManageEngine SupportCenter Plus, which can be exploited by malicious users to conduct script insertion attacks.
e2c62ea132fd39cf8f94005737145fbfff0443e642e0d4d0c9a6ef0d072ab3dfSecunia Security Advisory - Marcela Benetrix has discovered multiple vulnerabilities in Dokeos, which can be exploited by malicious users to conduct script insertion attacks.
d1e602e9e1f7c86986646e2bf1a6403011bdfd70e64672acabe8379142eaafcfSecunia Security Advisory - Charlie Eriksen has discovered two vulnerabilities in the All Video Gallery plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
9ab70767e66aa6e8815c445c0d9e8bf0cd05b3f34eecda5ec7b4b0d09cbde1a9Secunia Security Advisory - Two vulnerabilities have been reported in the Spider Catalog plugin for WordPress, which can be exploited by malicious people to conduct script insertion attacks.
659a382bf797271a5302c6a6fe3791767c64184ed8d95ae02f2925a03f963cebSecunia Security Advisory - A vulnerability has been discovered in the Follower User plugin for MyBB, which can be exploited by malicious users to conduct SQL injection attacks.
b6309744b602f940cf99e1b5269d4c627eb906515f6a29aad6fa649baf6f8fcaSecunia Security Advisory - Matan Azugi has reported a vulnerability in the TP-LINK TL-WR841N Router, which can be exploited by malicious people to disclose potentially sensitive information.
a2cf8a267b181cce1fe8bc639e6f4961bac4de4cb3bf936a7a58aaca6f634640Secunia Security Advisory - Two vulnerabilities have been reported in HP Performance Insight, which can be exploited by malicious people to disclose certain sensitive information and cause a DoS (Denial of Service).
9178a9b63e7e6aca359971d929c3cdb5cb44476ce9ba0c3823791f7ad9c2d0eaSecunia Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to compromise a user's system.
6869f37b575b1d5778b2a707b95942384927cfabec8378afbdeca5c28d48cac2
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed