Philip Pettersson

**Nome do software vulnerável e versões afetadas** RTI Connext Professional, versões 5.3.1 a 6.1.0 **Descrição** Um estouro de buffer na análise de XML do Serviço de Roteamento, Serviço de Gravação, Serviço de Fila e Serviço de Descoberta na Nuvem permite que invasores executem código com os privilégios do serviço afetado, comprometam a integridade do serviço, vazem informações confidenciais ou causem a falha do serviço. Esses ataques podem ser realizados por meio de uma mensagem RTPS maliciosa remota; uma chamada comprometida com parâmetros maliciosos para as APIs públicas `RTI RoutingService new`, `rti::recording::Service`, `RTI QueuingService new` ou `RTI CDS Service new`; ou um sistema de arquivos local comprometido contendo um arquivo XML malicioso. **Recomendações** Para as versões 5.3.1 a 6.1.0 do RTI Connext Professional, atualize para a versão 6.1.1 para se proteger contra possíveis execuções de código e vazamentos de informações. Como solução temporária, considere restringir o acesso aos serviços vulneráveis até que a atualização seja aplicada. Evite usar parâmetros maliciosos nas APIs públicas afetadas até que o problema seja resolvido.

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks PAN-OS versions prior to 6.1.19 Palo Alto Networks PAN-OS versions 7.0.x prior to 7.0.19 Palo Alto Networks PAN-OS versions 7.1.x prior to 7.1.14 Palo Alto Networks PAN-OS versions 8.0.x prior to 8.0.6 **Description** The issue allows remote attackers to execute arbitrary code via vectors involving the management interface. This can be achieved through the exploitation of a combination of unrelated vulnerabilities in the management interface of the device, allowing an attacker to remotely execute code on PAN-OS or Panorama in the context of the highest privileged user. **Recommendations** For versions prior to 6.1.19, update to version 6.1.19 or later. For versions 7.0.x prior to 7.0.19, update to version 7.0.19 or later. For versions 7.1.x prior to 7.1.14, update to version 7.1.14 or later. For versions 8.0.x prior to 8.0.6, update to version 8.0.6 or later. As a temporary workaround, consider restricting access to the management interface until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Symantec Messaging Gateway versions prior to 10.6.3-267 **Description** The issue exists due to insufficient input validation in the goform/formEMR30 component of the Symantec Messaging Gateway. This can allow a remote attacker to elevate their privileges or execute arbitrary code. The vulnerability describes a situation where an individual may obtain the ability to execute commands remotely on a target machine or in a target process. After gaining access to the system, the attacker may attempt to elevate their privileges. **Recommendations** For versions prior to 10.6.3-267, update to version 10.6.3-267 or later to resolve the issue. As a temporary workaround, consider restricting access to the goform/formEMR30 component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** procmail version 3.22 **Description** The issue is related to a heap-based buffer overflow in the formisc.c file of the formail component in procmail. This can be triggered by remote attackers sending a crafted email header, potentially causing a denial of service (crash) and possibly allowing the execution of arbitrary code. The vulnerability is related to "unbalanced quotes" in email headers. **Recommendations** For procmail version 3.22, consider updating to a newer version that addresses this issue, as the current version is affected by the heap-based buffer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.