Debasis Mohanty

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows 2000 SP4 Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP1 and SP2 Microsoft Windows Vista Gold and SP1 Microsoft Windows Server 2008 Microsoft Windows 7 Pre-Beta Windows Embedded Standard 2009 **Description** The issue is related to a remote code execution vulnerability in the Server service, which can be exploited by sending a specially crafted RPC request. This vulnerability was exploited in the wild by Gimmiv.A in October 2008. The problem lies in the improper handling of path canonicalization, leading to a buffer overflow. This can result in the execution of arbitrary code or denial of service. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For Microsoft Windows 2000 SP4, update to a newer version to mitigate the risk. For Microsoft Windows XP SP2 and SP3, update to a newer version to mitigate the risk. For Microsoft Windows Server 2003 SP1 and SP2, update to a newer version to mitigate the risk. For Microsoft Windows Vista Gold and SP1, update to a newer version to mitigate the risk. For Microsoft Windows Server 2008, update to a newer version to mitigate the risk. For Microsoft Windows 7 Pre-Beta, update to a newer version to mitigate the risk. For Windows Embedded Standard 2009, consider disabling the `NetprPathCanonicalize` function in the `netapi32.dll` module as a temporary workaround until a patch is available. Restrict access to the `C:WindowsSystem32` directory to minimize the risk of exploitation. Avoid using the `NetprPathCanonicalize` function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Adobe Acrobat and Reader versions 8.1.2 and earlier **Description** The issue is related to a stack-based buffer overflow in Adobe Acrobat and Reader, allowing remote attackers to execute arbitrary code via a PDF file that calls the `util.printf()` JavaScript function with a crafted format string argument. This is due to incorrect input validation, which can lead to a buffer overflow in memory when the `util.printf()` function is called. The exploitation of this issue can allow a remote attacker to execute arbitrary code by opening a specially crafted malicious PDF file or link. **Recommendations** For Adobe Acrobat and Reader versions 8.1.2 and earlier, consider disabling the `util.printf()` JavaScript function as a temporary workaround until a patch is available. Restrict access to PDF files from untrusted sources to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Shop-Script (affected versions not specified) Description: The issue allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in various parameters, including `links exchange`, `news`, `search with change category ability`, `logging`, `feedback`, `show price`, `register`, `answer`, `productID`, and `inside`. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft w3wp (affected versions not specified) **Description** The issue arises from improper handling of COM components in ASP.NET when the AspCompat directive is not used. This allows remote attackers to cause a denial of service by repeatedly requesting specific documents, leading to resource consumption or a crash. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZoneAlarm Pro version 6.0 ZoneAlarm Internet Security Suite version 6.0 ZoneAlarm Anti-Virus version 6.0 ZoneAlarm Anti-Spyware versions 6.0 through 6.1 ZoneAlarm version 6.0 **Description** The issue allows remote attackers to bypass the Advanced Program Control and OS Firewall filters setting. This can be achieved via URLs in HTML Modal Dialogs, specifically through the `window.location.href` property contained within JavaScript tags. **Recommendations** For ZoneAlarm Pro version 6.0, update to a version that addresses this issue. For ZoneAlarm Internet Security Suite version 6.0, update to a version that addresses this issue. For ZoneAlarm Anti-Virus version 6.0, update to a version that addresses this issue. For ZoneAlarm Anti-Spyware versions 6.0 through 6.1, update to a version that addresses this issue. For ZoneAlarm version 6.0, update to a version that addresses this issue. As a temporary workaround, consider restricting the use of JavaScript tags until a patch is available.