CERT Advisories

VU#767208: ThreatMetrix SDK for iOS fails to validate SSL certificates

On the iOS platform,the ThreatMetrix SDK versions prior to 3.2 fail to validate SSL certificates provided by HTTPS connections,which may allow an attacker to perform a man-in-the-middle(MITM)attack.

VU#475907: ShoreTel Mobility Client mobile application does not verify SSL certificates

ShoreTel Mobility Client for iOS and Android,version 9.1.3.109 and earlier,fails to properly validate SSL certificates provided by HTTPS connections,which may enable an attacker to conduct man-in-the-middle(MITM)attacks.

VU#535111: McAfee VirusScan Enterprise for Windows scriptproxy COM object memory corruption...

McAfee VirusScan Enterprise for Windows scriptproxy COM object contains a memory corruption vulnerability.

VU#779243: EpubCheck 4.0.1 contains a XML external entity processing vulnerability

EpubCheck 4.0.1 is vulnerable to external XML entity processing attacks.

VU#245327: McAfee VirusScan for Linux contains multiple vulnerabilities

McAfee VirusScan for Linux contains multiple vulnerabilities.

VU#582384: Multiple Netgear routers are vulnerable to arbitrary command injection

Netgear R6250,R6400,R6700,R6900,R7000,R7100LG,R7300DST,R7900,R8000,D6220,and D6400 routers and possibly other models are vulnerable to arbitrary command injection.

VU#768331: ForeScout CounterACT SecureConnector agent is vulnerable to privilege escalation

On Windows endpoints,the SecureConnector agent is vulnerable to privilege escalation whereby an authenticated unprivileged user can obtain administrator privileges on the endpoint by causing the SecureConnector agent to execute arbitrary code.

VU#548487: BSD libc contains a buffer overflow vulnerability in link_ntoa()

The BSD libc library's link_ntoa()function may be vulnerable to a classic buffer overflow.
It is currently unclear if this issue is exploitable.

VU#846103: Sungard eTRAKiT3 may be vulnerable to SQL injection

According to the reporter,the Sungard eTRAKiT3 software version 3.2.1.17 may be vulnerable to SQL injection which may allow a remote unauthenticated attacker to run a subset of SQL commands against the back-end database.

VU#791496: Mozilla Firefox SVG animation nsSMILTimeContainer use-after-free vulnerability

Mozilla Firefox contains a use-after-free vulnerability in the SVG animation functionality,which may allow a remote,unauthenticated attacker to execute arbitrary code on a vulnerable system.

VU#633847: NTP.org ntpd contains multiple denial of service vulnerabilities

NTP.org ntpd prior to 4.2.8p9 contains multiple denial of service vulnerabilities.

VU#624539: Ragentek Android OTA update mechanism vulnerable to MITM attack

Ragentek Android software contains an over-the-air update mechanism that communicates over an unencrypted channel,which can allow a remote attacker to execute arbitrary code with root privileges.