WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
August 23, 2006
Symantec ESM 6.5 Network Assessment Security Updates 27.02

File(s)

Download the cumulative Symantec ESM Network Assessment Release Notes (PDF)

Description

This update for Symantec ESM Network Assessment detects and reports 44 additional vulnerabilities and 67 updated vulnerabilities.

Use the LiveUpdate feature of Symantec ESM Network Assessment to download this security update.

Additional vulnerabilities

Bugtraq ID     Vulnerability name
11826	Microsoft Internet Explorer FTP URI Arbitrary FTP Server Command Execution Vulnerability
18198	Microsoft Windows MHTML URI Buffer Overflow Vulnerability
18277	Microsoft Internet Explorer Frameset Memory Corruption Vulnerability
18500	Microsoft HLINK.DLL Link Memory Corruption Vulnerability
18682	Microsoft Internet Explorer OuterHTML Redirection Handling Information Disclosure Vulnerability
18769	Microsoft Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
18855	Microsoft Internet Explorer Structured Graphics Control Denial Of Service Vulnerability
18873	Microsoft Internet Explorer Table Frameset Denial Of Service Vulnerability
18900	Microsoft Internet Explorer 6 RDS.DataControl Denial Of Service Vulnerability
18902	Microsoft Internet Explorer DirectAnimation.DAUserData Denial Of Service Vulnerability
18903	Microsoft Internet Explorer Object.Microsoft.DXTFilter Denial Of Service Vulnerability
18929	Microsoft Internet Explorer HtmlDlgSafeHelper Remote Denial Of Service Vulnerability
18946	Microsoft Internet Explorer TriEditDocument Denial Of Service Vulnerability
18960	Microsoft Internet Explorer RevealTrans Denial Of Service Vulnerability
19030	Microsoft Internet Explorer WebViewFolderIcon Denial Of Service Vulnerability
19069	Microsoft Internet Explorer DataSourceControl Denial of Service Vulnerability
19079	Microsoft Internet Explorer OVCtl Denial Of Service Vulnerability
19092	Microsoft Internet Explorer Content-Type Denial Of Service Vulnerability
19102	Microsoft Internet Explorer String To Binary Function Denial Of Service Vulnerability
19109	Microsoft Internet Explorer Internet.HHCtrl Click Denial Of Service Vulnerability
19113	Microsoft Internet Explorer Multiple Object ListWidth Property Denial Of Service Vulnerability
19114	Microsoft Internet Explorer NMSA.ASFSourceMediaDescription Stack Overflow Vulnerability
19135	Microsoft Windows Remote Denial of Service Vulnerability
19140	Microsoft Internet Explorer Native Function Iterator Denial Of Service Vulnerability
19184	Microsoft Internet Explorer NDFXArtEffects Stack Overflow Vulnerability
19215	Microsoft Windows SMB PIPE Remote Denial of Service Vulnerability
19221	Microsoft Windows Graphical Device Interface Plus Library Denial Of Service Vulnerability
19227	Microsoft Internet Explorer ADODB.Recordset NextRecordset Denial of Service Vulnerability
19228	Microsoft Internet Explorer Deleted Frame Object Denial Of Service Vulnerability
19300	Microsoft Windows Routing and Remote Access Denial of Service Vulnerability
19312	Microsoft Internet Explorer HTML Layout and Positioning Remote Code Execution Vulnerability
19316	Microsoft Internet Explorer Chained Cascading Style Sheets Remote Code Execution Vulnerability
19319	Microsoft Winsock Gethostbyname Buffer Overflow Vulnerability
19339	Microsoft Internet Explorer Window Location Cross-Domain Information Disclosure Vulnerability
19340	Microsoft Internet Explorer COM Object Instantiation Code Execution Vulnerability
19375	Microsoft Windows User Profile Privilege Escalation Vulnerability
19384	Microsoft Windows Unhandled Exception Remote Code Execution Vulnerability
19388	Microsoft Windows 2000 Kernel Local Privilege Escalation Vulnerability
19389	Microsoft Windows Explorer Drag and Drop Remote Code Execution Vulnerability
19400	Microsoft Internet Explorer Source Element Cross-Domain Information Disclosure Vulnerability
19404	Microsoft Windows DNS Client Buffer Overrun Vulnerability
19405	Microsoft Hyperlink Object Library Function Remote Buffer Overflow Vulnerability
19409	Microsoft Windows Server Service Remote Buffer Overflow Vulnerability
19417	Microsoft Management Console Zone Bypass Vulnerability

Updated vulnerabilities

Bugtraq ID     Vulnerability name
2206	PHP .htaccess Attribute Transfer Vulnerability
6557	PHP 4.0.3 IMAP Module Buffer Overflow Vulnerability
16220	PHP 5 User-Supplied Session ID Input Validation Vulnerability
15177	PHP Apache 2 Local Denial of Service Vulnerability
15413	PHP Apache 2 Virtual() Safe_Mode and Open_Basedir Restriction Bypass Vulnerability
7256	PHP array_pad() Integer Overflow Memory Corruption Vulnerability
6875	PHP CGI SAPI Code Execution Vulnerability
15411	PHP cURL and GD Multiple Safe_Mode and Open_Basedir Restriction Bypass Vulnerabilities
11557	PHP cURL Open_Basedir Restriction Bypass Vulnerability
8405	PHP DLOpen Memory Disclosure Vulnerability
7199	PHP emalloc() Unspecified Integer Overflow Memory Corruption Vulnerability
2205	PHP Engine Disable Source Viewing Vulnerability
1786	PHP Error Logging Format String Vulnerability
15250	PHP File Upload GLOBAL Variable Overwrite Vulnerability
5681	PHP Function CRLF Injection Vulnerability
12701	PHP Glob Function Local Information Disclosure Vulnerability
13164	PHP Group Exif Module IFD Nesting Denial Of Service Vulnerability
13163	PHP Group Exif Module IFD Tag Integer Overflow Vulnerability
15358	PHP Group Exif Module Infinite Recursion Denial Of Service Vulnerability
12962	PHP Group PHP Image File Format Remote Denial Of Service Vulnerability
13143	PHP Group PHP Multiple Unspecified Vulnerabilities
12963	PHP Group PHP Remote JPEG File Format Remote Denial Of Service Vulnerability
5669	PHP Header Function Script Injection Vulnerability
5278	PHP HTTP POST Incorrect MIME Header Parsing Vulnerability
4063	PHP Include File Relative Directory Information Disclosure Vulnerability
10427	PHP Input/Ouput Wrapper Remote Include Function Command Execution Weakness
5280	PHP Interpreter Direct Invocation Denial Of Service Vulnerability
11992	PHP JPEG Image Buffer Overflow Vulnerability
5562	PHP Mail Function ASCII Control Character Header Spoofing Vulnerability
15571	PHP MB_Send_Mail TO Argument Header Injection Vulnerability
10725	PHP memory_limit Remote Code Execution Vulnerability
10471	PHP Microsoft Windows Shell Escape Functions Command Execution Vulnerability
4325	PHP Move_Uploaded_File Open_Basedir Circumvention Vulnerability
11964	PHP Multiple Local And Remote Vulnerabilities
11981	PHP Multiple Remote Vulnerabilities
4026	PHP MySQL Safe_Mode Filesystem Circumvention Vulnerability
16145	PHP MySQL_Connect Remote Buffer Overflow Vulnerability
16219	PHP MySQLI Error Logging Remote Format String Vulnerability
17688	PHP MySQLI Error Logging Remote Format String Vulnerability_copy
14957	PHP Open_BaseDir Security Restriction Bypass Vulnerability
7210	PHP openlog() Buffer Overflow Vulnerability
15249	PHP Parse_Str Register_Globals Activation Weakness
11334	PHP PHP_Variables Remote Memory Disclosure Vulnerability
7805	PHP PHPInfo Cross-Site Scripting Vulnerability
15248	PHP PHPInfo Cross-Site Scripting Vulnerability
15248	PHP PHPInfo Cross-Site Scripting Vulnerability
4606	PHP posix_getpwnam / posix_getpwuid safe_mode Circumvention Vulnerability
4183	PHP Post File Upload Buffer Overflow Vulnerabilities
11190	PHP Remote Arbitrary Location File Upload Vulnerability
15119	PHP Safedir Restriction Bypass Vulnerabilities
2954	PHP SafeMode Arbitrary File Execution Vulnerability
14858	PHP Session Handling Local Session Hijacking Vulnerability
12045	PHP Shared Memory Module Offset Memory Corruption Vulnerability
7187	PHP socket_iovec_alloc() Integer Overflow Vulnerability
7197	PHP socket_recv() Signed Integer Memory Corruption Vulnerability
7198	PHP socket_recvfrom() Signed Integer Memory Corruption Vulnerability
7259	PHP STR_Repeat Boundary Condition Error Vulnerability
10724	PHP Strip_Tags() Function Bypass Vulnerability
7761	PHP Transparent Session ID Cross Site Scripting Vulnerability
8201	PHP Undefined Safe_Mode_Include_Dir Safemode Bypass Vulnerability
6488	PHP wordwrap() Heap Corruption Vulnerability
911	PHP3 'safe_mode' Failure Vulnerability
8693	PHP4 Base64_Encode() Integer Overflow Vulnerability
8696	PHP4 Multiple Vulnerabilities
12665	PHP4 Readfile Denial Of Service Vulnerability
3873	PHP4 Session Files Local Information Disclosure Vulnerability
14088	XML-RPC for PHP Remote Code Injection Vulnerability

Initial Post on: Tuesday, 23-Aug-06 15:40:00
Last modified on: Wednesday, 27-Sep-06 17:51:44
Site Map · Legal Notices · Privacy Policy · · Contact Us · Global Sites · License Agreements
©1995 - 2008 Symantec Corporation