Brett Gervasoni

**Nome do Software Vulnerável e Versões Afetadas** DataHub versões anteriores a 1.5.0.3 **Descrição** O frontend do DataHub (datahub-frontend-react) desserializa objetos Java controlados por atacantes a partir do cookie HTTP `REDIRECT URL` durante o fluxo de callback OIDC, sem proteção de integridade, como HMAC ou criptografia. Este problema afeta o endpoint 'GET /callback/oidc'. A exploração bem-sucedida requer que o atacante possua uma conta de usuário válida no provedor de identidade OIDC configurado. **Recomendações** Atualizar para a versão 1.5.0.3.

**Name of the Vulnerable Software and Affected Versions** Apache HTTP Server versions 2.0.37 through 2.0.63 Apache HTTP Server versions 2.2.0 through 2.2.14 Apache HTTP Server versions 2.3.x before 2.3.7 **Description** The issue is related to the mod isapi module in the Apache HTTP Server, which does not ensure that request processing is complete before unloading an ISAPI .dll module. This can be exploited by remote attackers via crafted requests, potentially allowing arbitrary code execution. On Windows platforms, this flaw can also result in a denial of service due to the win32 MPM running only one process. **Recommendations** For Apache HTTP Server versions 2.0.37 through 2.0.63, update to a version after 2.0.63 or apply a patch to fix the issue. For Apache HTTP Server versions 2.2.0 through 2.2.14, update to a version after 2.2.14 or apply a patch to fix the issue. For Apache HTTP Server versions 2.3.x before 2.3.7, update to version 2.3.7 or later to resolve the issue. As a temporary workaround, consider disabling the mod isapi module until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TheGreenBow IPSec VPN Client versions 4.51.001 through 4.65.003 **Description** A stack-based buffer overflow issue exists, allowing user-assisted remote attackers to execute arbitrary code via a long `OpenScriptAfterUp` parameter in a policy (.tgb) file. This issue is related to the "phase 2" aspect of the software. **Recommendations** For versions 4.51.001 through 4.65.003, avoid using long `OpenScriptAfterUp` parameters in policy (.tgb) files to minimize the risk of exploitation. As a temporary workaround, consider restricting the use of the `OpenScriptAfterUp` parameter in the affected policy files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** SafeNet SoftRemote versions 10.3.5 through 10.8.5 **Description** A stack-based buffer overflow issue allows local users to execute arbitrary code via a long string in a (1) TREENAME or (2) GROUPNAME Policy file (spd). **Recommendations** For versions 10.3.5 through 10.8.5, update to version 10.8.9 or later to resolve the issue.