David F. Madrid

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer version 6.0 SP1 **Description** The issue allows remote attackers to cause a denial of service by creating a DHTML link that uses the AnchorClick object with a blank `href` attribute. **Recommendations** For Microsoft Internet Explorer version 6.0 SP1, consider avoiding the use of the AnchorClick object with a blank `href` attribute until a fix is available.

Name of the Vulnerable Software and Affected Versions: Kerio MailServer version 5.6.3 Description: The issue involves multiple buffer overflows and cross-site scripting attacks. Remote authenticated users can cause a denial of service and possibly execute arbitrary code via long parameters in various modules, including `showuser` in the `do subscribe` module, `folder` in the `add acl` and `list` modules, and `user` in the `do map` module. Additionally, cross-site scripting attacks are possible in the `add acl` and `do map` modules of the web mail component, where an attacker can exploit the vulnerability by enticing a victim user to follow a malicious link. The estimated number of potentially affected devices is not specified. Recommendations: For Kerio MailServer version 5.6.3, consider disabling the `do subscribe`, `add acl`, `list`, and `do map` modules until a patch is available to prevent exploitation. Restrict access to the web mail component to minimize the risk of cross-site scripting attacks. Avoid using excessive length usernames and parameters in the affected modules to reduce the risk of buffer overflows. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Kerio MailServer version 5.6.3 Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities and buffer-overrun vulnerabilities in the web mail component. An attacker can exploit the XSS vulnerabilities by enticing a victim user to follow a malicious link, potentially allowing the insertion of arbitrary web script via the `add name` parameter in the `add acl` module or the `alias` parameter in the `do map` module. Additionally, buffer-overrun vulnerabilities can occur when handling usernames of excessive length, potentially resulting in the execution of arbitrary code with the privileges of the Kerio Mail Server process. Recommendations: For Kerio MailServer version 5.6.3, consider disabling the `add acl` and `do map` modules until a patch is available. Restrict access to the web mail component to minimize the risk of exploitation. Avoid using the `add name` and `alias` parameters in the affected modules until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: 3com OfficeConnect Remote 812 ADSL Router version 1.1.7 Description: The issue arises from the router's failure to properly clear memory from DHCP responses. This oversight allows remote attackers to identify the contents of previous HTTP requests by sniffing DHCP packets. Recommendations: For version 1.1.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.