stratsec has identified another vulnerability that exists in the Microsoft SMB client which allows an attacker to trigger a kernel pool memory corruption by sending a specific ‘Negotiate Protocol’ response. Successful exploitation of this issue may result in remote code execution with kernel privileges. Failed attempts may result in a remote denial of service.
• Discovered by: Laurent Gaffie
• Issue status: Patch available
• Release date: 9/02/2010
We have identified a vulnerability that exists within the Forms Data Format (FDF) built into Adobe Acrobat Reader which allows an attacker to inject JavaScript into a Portable Document Format (PDF) file from any domain on the internet. Successful exploitation of this issue results in the potential disclosure of sensitive information or other cross-domain attacks including cross-site scripting.
• Discovered by: Paul Theriault
• Issue status: Patch available
• Release date: 12/01/2010
We have identified several cross-site scripting (XSS) vulnerabilities in the latest version of the VMWare Infrastructure Web Access system used in several VMWare products. After subsequent discussion with VMWare, the issue was identified to be present in a third party component utilised by VMWare, namely WebWorks Help.
• Discovered by: Alex Kouzemtchenko
• Issue status: Patch available
• Vendor notified: 13/07/2009