Martin Oneal

**Name of the Vulnerable Software and Affected Versions** Apache Traffic Server versions 8.0.0 through 9.2.0 **Description** The issue is related to the exposure of sensitive information to an unauthorized actor. This can be exploited by a remote attacker to disclose protected information. The vulnerability is associated with a lack of protection for service data. **Recommendations** For Apache Traffic Server versions 8.0.0 through 9.2.0, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** VMware Workstation versions 5.5.x through 5.5.5 VMware Player versions 1.0.x through 1.0.5 VMware ACE versions 1.0.x through 1.0.4 VMware Server versions 1.0.x through 1.0.4 VMware Fusion versions 1.1.x through 1.1.0 **Description** The issue allows attackers to cause a denial of service in the DHCP service. **Recommendations** For VMware Workstation versions 5.5.x through 5.5.5, update to version 5.5.6. For VMware Player versions 1.0.x through 1.0.5, update to version 1.0.6. For VMware ACE versions 1.0.x through 1.0.4, update to version 1.0.5. For VMware Server versions 1.0.x through 1.0.4, update to version 1.0.5. For VMware Fusion versions 1.1.x through 1.1.0, update to version 1.1.1.

**Name of the Vulnerable Software and Affected Versions** Sun JRE 5.0 versions prior to update 14 **Description** The issue allows remote attackers to cause a denial of service, specifically an Internet Explorer crash, by utilizing an object tag with an encoded applet and an undefined name attribute. This triggers a NULL pointer dereference in jpiexp32.dll when the applet is decoded and passed to the JVM. **Recommendations** For Sun JRE 5.0 versions prior to update 14, update to a version that includes update 14 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: HP-UX versions B.11.00 through B.11.23 Description: The issue allows remote attackers to modify data or cause disk consumption due to world-writable permissions being set on part of the directory tree by the TFTP server when running Ignite-UX and using the add new client command. Recommendations: For HP-UX versions B.11.00 through B.11.23, consider restricting access to the TFTP server or modifying the permissions set by the add new client command to prevent remote attackers from modifying data or causing disk consumption. As a temporary workaround, restrict the use of the add new client command until a proper fix is applied.

**Name of the Vulnerable Software and Affected Versions** Content Security Gateway and Antivirus products (affected versions not specified) **Description** The issue allows remote attackers to bypass content restrictions in multiple content security gateway and antivirus products. This is achieved through MIME messages that utilize whitespace in an unusual manner, potentially leading to different interpretations by various mail clients. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Content Security Gateway and Antivirus products (affected versions not specified) **Description** The issue allows remote attackers to bypass content restrictions in multiple content security gateway and antivirus products. This is achieved through MIME encapsulation that utilizes RFC822 comment fields. These fields may be interpreted as other fields by mail clients, leading to the bypass of intended restrictions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Content Security Gateway and Antivirus products (affected versions not specified) **Description** The issue allows remote attackers to bypass content restrictions in multiple content security gateway and antivirus products. This is achieved through MIME messages that utilize multiple MIME fields with the same name, potentially leading to different interpretations by mail clients. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The issue allows remote attackers to bypass content restrictions in multiple content security gateway and antivirus products. This is achieved through MIME messages that utilize non-standard separator characters or incorrectly use standard separators within MIME headers, fields, parameters, or values. The incorrect interpretation of these separators by mail clients can lead to the bypassing of content restrictions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Content security gateway and antivirus products (affected versions not specified) **Description** The issue allows remote attackers to bypass content restrictions in multiple content security gateway and antivirus products. This is achieved through MIME messages that utilize malformed quoting in MIME headers, parameters, and values. The malformed quoting can include fields that should not be quoted, duplicate quotes, or missing leading or trailing quote characters. These malformed quotes may be interpreted differently by mail clients, potentially leading to the bypassing of content restrictions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Content security gateway and antivirus products (affected versions not specified) **Description** The issue allows remote attackers to bypass content restrictions via MIME messages that use fields with RFC2047 encoding. This encoding may be interpreted differently by mail clients, potentially leading to security breaches. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sygate Enforcer versions 4.0 and earlier **Description** The issue allows remote attackers to cause a denial of service, resulting in the service hanging, by replaying a malformed discovery packet to the UDP port 39999. **Recommendations** For Sygate Enforcer versions 4.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ServerMask versions 2.2 and earlier **Description** The issue concerns the lack of obfuscation for certain HTTP responses, specifically (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could reveal to remote attackers that the web server is an IIS server. **Recommendations** For ServerMask versions 2.2 and earlier, consider updating to a version that properly obfuscates these HTTP responses to prevent disclosure of the web server type. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Clearswift MAILsweeper versions prior to 4.3.15 **Description** The issue allows remote attackers to bypass intended policy by not properly detecting and filtering RAR 3.20 encoded files. **Recommendations** For versions prior to 4.3.15, update to version 4.3.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Clearswift MAILsweeper versions prior to 4.3.15 **Description** The issue allows remote attackers to bypass intended policy due to improper detection and filtering of ZIP 6.0 encoded files. **Recommendations** For versions prior to 4.3.15, update to version 4.3.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Clearswift MAILsweeper versions prior to 4.3.15 **Description** The issue allows remote attackers to bypass intended policy due to improper detection of filenames in BinHex (HQX) encoded files. **Recommendations** For versions prior to 4.3.15, update to version 4.3.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Sygate Secure Enterprise (SSE) versions 3.5MR3 and earlier **Description** The issue allows remote attackers to cause a denial of service, specifically resource exhaustion, by capturing a session and repeatedly replaying it. This is due to the software not changing the key used to encrypt data. **Recommendations** For versions 3.5MR3 and earlier, consider implementing measures to prevent session replay attacks, such as regenerating encryption keys after a session is closed, until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Verity Ultraseek versions prior to 5.2.2 **Description** The issue allows remote attackers to obtain the full pathname of the document root via an MS-DOS device name in the web search option, such as `NUL`, `CON`, `AUX`, `COM1`, `COM2`, and others. **Recommendations** For versions prior to 5.2.2, update to version 5.2.2 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: PeopleTools versions 8.43 and earlier Description: The issue allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value. This is related to the PeopleSoft Gateway Administration servlet (gateway.administration). Recommendations: For PeopleTools versions 8.43 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: PeopleTools versions 8.43 and earlier Description: A cross-site scripting (XSS) issue exists in the PeopleSoft IScript environment, allowing remote attackers to insert arbitrary web script via a certain HTTP request to IScript. This enables attackers to potentially execute malicious scripts on the victim's browser. Recommendations: For PeopleTools versions 8.43 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: BEA Tuxedo versions 8.1 and earlier Description: The issue allows remote attackers to cause a denial of service, resulting in the system hanging, by providing pathname arguments that contain MS-DOS device names such as CON and AUX. Recommendations: For BEA Tuxedo versions 8.1 and earlier, consider restricting or validating pathname arguments to prevent the inclusion of MS-DOS device names as a temporary workaround until a patch is available.