DragonSoft Security Associates

Advisories & Alerts

Date Reported: 2009/04/28
Name: Xpdf JBIG2 Processing Multiple Security Vulnerabilities-Mandriva
Risk: High
CVSS Base Score: 10
Category: Mandriva Security Checks
Affect OS: Mandriva
Description: http://vdb.dragonsoft.com/detail.php?id=3757

Date Reported: 2009/04/27
Name: Fedora xulrunner Bugfix Update-FEDORA-2009-3875
Risk: High
CVSS Base Score: 10
Category: Fedora Security Checks
Affect OS: Fedora
Description: http://vdb.dragonsoft.com/detail.php?id=3754

Date Reported: 2009/04/27
Name: Fedora xulrunner Bugfix Update-FEDORA-2009-3893
Risk: High
CVSS Base Score: 10
Category: Fedora Security Checks
Affect OS: Fedora
Description: http://vdb.dragonsoft.com/detail.php?id=3753

Date Reported: 2009/04/27
Name: MIT Kerberos 5 Multiple Vulnerabilities-Mandriva
Risk: High
CVSS Base Score: 10
Category: Mandriva Security Checks
Affect OS: Mandriva
Description: http://vdb.dragonsoft.com/detail.php?id=3752

Date Reported: 2009/04/27
Name: Mozilla Firefox before 3.0.10 Multiple Remote Vulnerabilities-Fedora
Risk: Medium
CVSS Base Score: 3
Category: Fedora Security Checks
Affect OS: Fedora
Description: http://vdb.dragonsoft.com/detail.php?id=3755

Date Reported: 2009/04/27
Name: Mozilla Firefox before 3.0.10 Multiple Remote Vulnerabilities-RedHat
Risk: Medium
CVSS Base Score: 3
Category: Red Hat Security Checks
Affect OS: CentOS
Description: http://vdb.dragonsoft.com/detail.php?id=3751

Date Reported: 2009/04/27
Name: Mozilla Firefox ClearTextRun() Function DoS Vulnerability
Risk: Medium
CVSS Base Score: 3
Category: Others
Affect OS: Windows NT4, 2000, XP, 2003
Description: http://vdb.dragonsoft.com/detail.php?id=3750

--------------------------------------------------------------------------------------------------

Risk:
  High: Allow immediate remote, or local access or immediate execution of code or commands,
          with unauthorized privileges, and bypassing security on firewalls.
  Medium: Potential of granting access or allowing code execution by means of complex or 
          lengthy exploit procedures. Examples are cross-site scripting, man-in-the-middle 
          attacks, SQL injection, denial of service, information disclosure.
  Low: deny service or provide non-system information that could be used to formulate 
         structured attacks on a target, but not directly gain unauthorized access.
--------------------------------------------------------------------------------------------------
Copyright (c) DragonSoft Security Associates, Inc. All rights reserved

PRODUCTS\| SOLUTIONS \| RESOURCES \| SUPPORT \| PARTNERS \| COMPANY
Copyright © DragonSoft Security Associates, Inc. All rights reserved..	Privacy statement