Michał Bućko, konsultant ds. bezpieczeństwa Eleytt (polskiej firmy świadczącej usługi audytu bezpieczeństwa oraz audytu polityki bezpieczeństwa informatycznego – eleytt.com), w niedzielę przesłał informacje o kilkunastu błędach w oprogramowaniu, między innymi o zdalnym wykonaniu kodu w Symantec Norton Ghost 12.0 oraz zdalnym wykonaniu kodu w produkcie AllFusion Process Modeler firmy Computer Associates.
Oto potwierdzenie doniesień dotyczących luk:
Nonnoi ASP/Barcode COM Component NONNOI_ASPBarcode.DLL Arbitrary File Overwrite Vulnerability
http://www.securityfocus.com/bid/24822
Symantec Norton Ghost RemoteCommand.DLL Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/24825
Computer Associates ERwin Data Model Validator Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/24814
Mozilla Firefox Multiple Popup Tabs Denial of Service Vulnerability
http://www.securityfocus.com/bid/24820
Computer Associates AllFusion Process Modeler Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/24817
Data Dynamics ActiveReports DDRow EXCLEXPT.DLL ActiveX Control Denial of Service Vulnerability
http://www.securityfocus.com/bid/24815
Innovasys DockStudioXP InnovaDSXP2.OCX ActiveX Control Denial of Service Vulnerability
http://www.securityfocus.com/bid/24834
Media Player Classic .FLV Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/24830
Eltima Software Virtual Serial Port VSPort.DLL ActiveX Control Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/24827
Symantec Norton Ghost FileBackup.DLL Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/24826
Computer Associates ERwin Process Modeler MERGEOLF.EXE Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/24824
Eltima Software Virtual Serial Port VSPort.DLL ActiveX Control Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/24827
NuMedia NMSDVDX.DLL Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/24821
Równolegle na Bugtraq pojawiło się ciekawe doniesienie Michała Zalewskiego dotyczące luki w Mozilla Firefox:
Mozilla Firefox WYCIWYG:// URI Cache Zone Bypass Vulnerability
http://www.securityfocus.com/bid/24831