Security Hero Rotating Header Image

May 4th, 2009:

1527 (kernel)

CVE-2009-1527 (kernel)

Race condition in the ptrace_attach function in kernel/ptrace.c in the Linux kernel before 2.6.30-rc4 allows local users to gain privileges via a PTRACE_ATTACH ptrace call during an exec system call that is launching a setuid application, related to locking an incorrect cred_exec_mutex object.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1527

1526 (directadmin)

CVE-2009-1526 (directadmin)

JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1526

1525 (directadmin)

CVE-2009-1525 (directadmin)

CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1525

1469 (email_server, webmail_server)

CVE-2009-1469 (email_server, webmail_server)

CRLF injection vulnerability in the Forgot Password implementation in server/webmail.php in IceWarp eMail Server and WebMail Server before 9.4.2 makes it easier for remote attackers to trick a user into disclosing credentials via CRLF sequences preceding a Reply-To header in the subject element of an XML document, as demonstrated by triggering an e-mail message from the server that contains a user’s correct credentials, and requests that the user compose a reply that includes this message.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1469

1468 (email_server, webmail_server)

CVE-2009-1468 (email_server, webmail_server)

Multiple SQL injection vulnerabilities in the search form in server/webmail.php in the Groupware component in IceWarp eMail Server and WebMail Server before 9.4.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) sql and (2) order_by elements in an XML search query.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1468

1467 (webmail_server)

CVE-2009-1467 (webmail_server)

Multiple cross-site scripting (XSS) vulnerabilities in IceWarp eMail Server and WebMail Server before 9.4.2 allow remote attackers to inject arbitrary web script or HTML via (1) the body of a message, related to the email view and incorrect HTML filtering in the cleanHTML function in server/inc/tools.php; or the (2) title, (3) link, or (4) description element in an RSS feed, related to the getHTML function in server/inc/rss/item.php.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1467

1184 (kernel)

CVE-2009-1184 (kernel)

The selinux_ip_postroute_iptables_compat function in security/selinux/hooks.c in the SELinux subsystem in the Linux kernel before 2.6.27.22, and 2.6.28.x before 2.6.28.10, when compat_net is enabled, omits calls to avc_has_perm for the (1) node and (2) port, which allows local users to bypass intended restrictions on network traffic. NOTE: this was incorrectly reported as an issue fixed in 2.6.27.21.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1184

1491 (groupshield)

CVE-2009-1491 (groupshield)

McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote attackers to bypass virus detection via a crafted message, as demonstrated by a message with an X-Testing header and no message body.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1491

1490 (sendmail)

CVE-2009-1490 (sendmail)

Heap-based buffer overflow in Sendmail before 8.13.2 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1490

1524 (jetty)

CVE-2009-1524 (jetty)

Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before 6.1.17 allows remote attackers to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) character.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1524

1523 (jetty)

CVE-2009-1523 (jetty)

Directory traversal vulnerability in the HTTP server in Mort Bay Jetty before 6.1.17, and 7.0.0.M2 and earlier 7.x versions, allows remote attackers to access arbitrary files via directory traversal sequences in the URI.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1523

1522 (tivoli_storage_manager_client)

CVE-2009-1522 (tivoli_storage_manager_client)

The IBM Tivoli Storage Manager (TSM) client 5.5.0.0 through 5.5.1.17 on AIX and Windows, when SSL is used, allows remote attackers to conduct unspecified man-in-the-middle attacks and read arbitrary files via unknown vectors.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1522

1521 (tivoli_storage_manager_client, tivoli_storage_manager_express)

CVE-2009-1521 (tivoli_storage_manager_client, tivoli_storage_manager_express)

Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and the TSM Express client 5.3.3.0 through 5.3.6.5, allows attackers to read or modify arbitrary files via unknown vectors.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1521

1520 (tivoli_storage_manager_client, tivoli_storage_manager_express)

CVE-2009-1520 (tivoli_storage_manager_client, tivoli_storage_manager_express)

Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17 allows attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1520

0720 (openview_network_node_manager)

CVE-2009-0720 (openview_network_node_manager)

Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via unknown vectors.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0720