Tom Gregory

**Nome do software vulnerável e versões afetadas** Servidores Distinct Intranet versões 3.10 e anteriores **Descrição** A vulnerabilidade permite que invasores remotos leiam ou gravem arquivos arbitrários por meio de um .. (ponto-ponto) nos comandos (1) get ou (2) put. Isso se deve a várias vulnerabilidades de traversal de diretório no servidor TFTP. **Recomendações** Para as versões 3.10 e anteriores do Distinct Intranet Servers, considere restringir o acesso ao servidor TFTP até que uma correção esteja disponível. Como solução temporária, evite usar os comandos get e put com sequências .. (ponto ponto) para minimizar o risco de exploração. No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Centreon versions 2.3.3 through 2.3.9-4 Centreon web version prior to 2.6.0 **Description** The issue allows remote authenticated users to execute arbitrary SQL commands. This is achieved via the `menu` parameter in the menuXML.php file. **Recommendations** For Centreon versions 2.3.3 through 2.3.9-4, update to Centreon web version 2.6.0 or later. For Centreon web version prior to 2.6.0, update to version 2.6.0 or later.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Control Manager versions prior to 5.5.0.1823 Trend Micro Control Manager version 6.0 before 6.0.0.1449 **Description** A SQL injection issue exists in the ad hoc query module, allowing remote attackers to execute arbitrary SQL commands. **Recommendations** For versions prior to 5.5.0.1823, update to version 5.5.0.1823 or later. For version 6.0 before 6.0.0.1449, update to version 6.0.0.1449 or later.

**Name of the Vulnerable Software and Affected Versions** Trend Micro InterScan Messaging Security Suite version 7.1-Build Win32 1394 **Description** A cross-site request forgery issue exists, allowing remote attackers to hijack administrator authentication for creating admin accounts via a saveAuth action in the saveAccountSubTab.imss module. **Recommendations** For Trend Micro InterScan Messaging Security Suite version 7.1-Build Win32 1394, consider disabling the saveAccountSubTab.imss module or restricting access to the saveAuth action until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Trend Micro InterScan Messaging Security Suite version 7.1-Build Win32 1394 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The injection can occur via two parameters: `wrsApprovedURL` to the "addRuleAttrWrsApproveUrl.imss" endpoint or the `src` parameter to the "initUpdSchPage.imss" endpoint. **Recommendations** For Trend Micro InterScan Messaging Security Suite version 7.1-Build Win32 1394, as a temporary workaround, consider restricting access to the "addRuleAttrWrsApproveUrl.imss" and "initUpdSchPage.imss" endpoints to minimize the risk of exploitation. Avoid using the `wrsApprovedURL` and `src` parameters in these endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CyberLink Power2Go versions 7 (build 196) through 8 (build 1031) **Description** The issue is related to multiple stack-based buffer overflows that allow remote attackers to execute arbitrary code. This is achieved via the `src` and `name` parameters in a p2g project file. **Recommendations** For CyberLink Power2Go version 7 (build 196), update to a version that contains a fix for this issue. For CyberLink Power2Go version 8 (build 1031), update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to p2g project files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Aviosoft DTV Player version 1.0.1.2 **Description** A buffer overflow issue allows remote attackers to execute arbitrary code via a crafted .plf file. **Recommendations** For Aviosoft DTV Player version 1.0.1.2, update to a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** AmmSoft ScriptFTP version 3.3 **Description** The issue is a stack-based buffer overflow that allows remote FTP servers to execute arbitrary code. This can occur when a long filename is received in response to a LIST command. The exploitation can be demonstrated using commands such as GETLIST or GETFILE in a ScriptFTP script. **Recommendations** For AmmSoft ScriptFTP version 3.3, consider avoiding the use of GETLIST or GETFILE commands until a patch is available. As a temporary workaround, restrict access to untrusted FTP servers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.