Shinnok

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions 0.2.149.27 through 0.2.149.28 **Description** A stack-based buffer overflow issue might allow user-assisted remote attackers to execute arbitrary code via a link target with a large number of path elements. This occurs when the status bar is updated after the user hovers over the link, specifically targeting the `href` attribute. **Recommendations** For Google Chrome versions 0.2.149.27 through 0.2.149.28, update to version 0.2.149.29 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 0.99.7 through 1.0.3 **Description** The issue allows remote attackers to cause a denial of service, resulting in the application aborting. This is achieved by providing a malformed Tamos CommView capture file, specifically a .ncf file, that contains an unknown or unexpected packet type, which triggers a failed assertion. **Recommendations** For Wireshark versions 0.99.7 through 1.0.3, consider avoiding the use of .ncf files from untrusted sources until a fix is available. As a temporary workaround, restrict the processing of .ncf files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Michael Roth Software Personal FTP Server (PFT) version 6.0f **Description** The issue allows remote attackers to cause a denial of service, resulting in the service crashing. This can be achieved by sending multiple RETR commands, possibly involving long filenames. **Recommendations** For version 6.0f, consider restricting access to the RETR command or limiting the length of filenames to prevent the service from crashing until a fix is available.

Name of the Vulnerable Software and Affected Versions: WinRemotePC (WRPC) Lite 2008 WinRemotePC (WRPC) Full 2008 Description: The issue allows remote attackers to cause a denial of service, specifically CPU consumption, by sending a crafted packet to TCP port 4321. Recommendations: For WinRemotePC (WRPC) Lite 2008 and Full 2008, consider restricting access to TCP port 4321 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.