ArcaVir News

Two flaws in 3D Life Player

Thu, 17 May 2012 13:36:14 +0200

Two flaws were found in 3D Life Player. Both are boundary errors in WebPlayer ActiveX WebPlayer control Both allow to use crafted data strings to cause buffer overflow. A successful attack allows to execute arbitrary code.
Flaws were found in version 5.0.0.20. Other versions can be vulnerable also.
Users should set kill-bit for the ActiveX control.

Source: Secunia
17.05.2012

HP Business Service Management is prone to an attack

Thu, 17 May 2012 13:29:50 +0200

A flaw found in HP Business Service Management allows to attack user’s system. It is due to errors in restricting access to certain ports. An attacker may upload war files with crafted requests sent to TCP ports 1098, 1099 and 4444.
A successful attack allows to execute arbitrary code, but requires a standard configuration.
The vulnerability was discovered in version 9.12. Other versions can be vulnerable also. Users should restrict access to trusted hosts only.

Source: Secunia
17.05.2012

Flaws found in WordPress plugins

Wed, 16 May 2012 15:12:44 +0200

Multiple less critical vulnerabilities were discovered in WordPress plugins. Two of them are present in Mingle Forum 1.x. Flaws are due to improper sanitisation of input data passed to wp-admin/admin.php file. An attacker may exploit them to execute arbitrary HTML and script doce. Users should upgrade to version 1.0.33.2. Similar flaws are present in Subscribe2 Plugin 8.x. Those holes are also caused by errors in sanitisation of input data passed to wp-admin/admin.php file. The plugin should be upgraded to version 8.2.
Users of Track That Stat Plugin 1.x should upgrade to version 1.1.0 as in prior versions input data passed to „data“ parameter are not properly sanitised before being returned to a user. It allows attacker to execute arbitrary HTML and script code.

Source: Secunia
16.05.2012

A flaw found in Photoshop

Wed, 16 May 2012 15:11:39 +0200

Adobe Photoshop CS5 12.x users should upgrade to version CS6 because a highly critical vulnerability was found in previous versions. The flaw allows attacker to compromise user’s system. The vulnerability is due to a boundary error in U3D.8BI plugin when processing certain Collada file elements. An attacker may use crafted DAE file to cause buffer overflow error. A successful attack allows to execute arbitrary code but requires to entice user to open crafted file.

Source: Secunia
16.05.2012

New QuickTime for Windows published

Wed, 16 May 2012 15:09:32 +0200

Apple published QuickTime 7.7.2 for Windows that patches 17 security vulnerabilities. There were integer, stack and buffer overflow flaws as well as minor vulnerabilities. An attacker can exploit them to crash the application or execute arbitrary code in user’s system. For an attack to be successful an attacker has to entice user to visit malicious website or open crafted file.
The new QuickTime version is for Windows XP SP2, Vista and 7.

source: Heise Online
16.05.2012

Bitcoinica website was attacked

Tue, 15 May 2012 13:27:39 +0200

During an attack on Bitcoinica website cybercriminals were able to steal 18547 virtual coins valued at 55 000 GBP. The website was turned off and its operators informed no money from users’ accounts were stolen. The attackers only accessed the organization’s account.
But they were also able to access users’ database and obtain informations such as usernames, e-mail addresses and transactions’ details. Such data can be used during future attacks.
Bitcoinica asks users to change passwords and, if the same passwords are used elsewhere, to change them all.

source: Heise Online
15.05.2012

Critical flaw in Hitachi COBOL

Tue, 15 May 2012 13:26:36 +0200

Highly critical vulnerability in Hitachi COBOL GUI Run Time System and Hitachi COBOL Server GUI Run Time System allows to compromise user’s system. The vulnerability is due to an unspecified error. It is only known that successful attack allows to execute arbitrary code. The flaw was found in versions 06-00, 06-01 through 06-01-/A, 07-00, 07-01 through 07-01/A and 08-00 through 08-00-/A. Users should upgrade to 07-01-/B or 08-00-/B.

Source: Secunia
15.05.2012

Two flaws in Travelon Express

Tue, 15 May 2012 13:25:51 +0200

Two moderately critical vulnerabilities were found in Travelon Express. Flaws allow to launch SQL injection attack. Input data passed via „hid“ parameter to holiday.php and holiday_book.php are not sanitised before being used in SQL queries. An attacker may manipulate queries by injecting arbitrary code.
Flaws were found in version 6.2. Other versions can be vulnerable also.

Source: Secunia
15.05.2012

Flaw found in OpenSSL

Mon, 14 May 2012 13:40:22 +0200

A flaw in OpenSSL allows to cause DoS of the application that uses the library. The vulnerability is due to an integer underflow error when parsing TLS record of DTLS packets. A successful attack allows to crash the application.
The vulnerability was found in versions prior to 1.0.1c, 1.0.0j and 0.9.8x. Users should upgrade to 1.0.1c, 1.0.0j or 0.9.8x.

Source: Secunia
14.05.2012

Two teens arrested in Norway

Fri, 11 May 2012 14:50:42 +0200

Norwegian police arrested two persons, aged 18 and 19 years. They are suspected of taking part in DDoS attacks on UK’s Serious Organised Crime Agency. The teens probably also took part in attacks on Bild newspaper and Norwegian Lottery. „We have arrested the two we think were most important in these attacks, but we still want to talk to more people“ - said prosecutor Erik Moestue.

source: Heise Online
11.05.2012