@RISK: The Consensus Security Alert http://www.sans.org/newsletters/risk/display.php All Updates From Vol: 7 - Issue: 36 en-us (C) SANS Institute 2008 webmaster@sans.org SANS RSS Feed http://www.sans.org/images/rss_logo.gif http://www.sans.org/newsletters/risk/display.php SANSFIRE 2008 http://www.sans.org/info/27924/ http://www.sans.org/info/27924/ More than 40 courses, SANS top instructors, all in one great place! SANSFIRE 2008 is being held in Washington, DC on July 22-31. Register today! (1) CRITICAL: Novell eDirectory Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely1 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely1 Category: Widely Deployed Software

Affected:

  • Novell eDirectory versions prior to 8.8 SP3

]]> (2) CRITICAL: Red Hat Directory Server Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely2 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely2 Category: Widely Deployed Software

Affected:

  • Red Hat Directory Server versions prior to 7.1 service pack 7

]]> (3) HIGH: Novell Forum Arbitrary Tcl Command Injection http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely3 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely3 Category: Widely Deployed Software

Affected:

  • Novell Forum versions 8.0 and prior

]]> (4) HIGH: Novell iPrint Client ActiveX Control Buffer Overflow http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely4 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely4 Category: Widely Deployed Software

Affected:

  • Novell iPrint Client versions prior to 5.08

]]> (5) HIGH: Ultra Office ActiveX Control Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely5 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely5 Category: Widely Deployed Software

Affected:

  • Ultra Office ActiveX Control versions 2.x

]]> (6) MODERATE: Multiple VMware Products Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely6 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely6 Category: Widely Deployed Software

Affected:

  • VMware ESX Server
  • VMware Fusion
  • VMware ACE
  • VMware Player
  • VMware Server
  • VMware Workstation

]]> (7) MODERATE: libpurple Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely7 http://www.sans.org/newsletters/risk/display.php?v=7&i=36&rss=Y#widely7 Category: Widely Deployed Software

Affected:

  • libpurple versions prior to those distributed with Pidgin 2.4.3

]]>