3Apa3A

**Name of the Vulnerable Software and Affected Versions** PRO-Search versions 0.17 and earlier **Description** The issue allows remote attackers to cause a denial of service by providing certain values for the `show page` and `time` parameters to the default URI. **Recommendations** For PRO-Search versions 0.17 and earlier, avoid using the `show page` and `time` parameters in the default URI until a fix is available. As a temporary workaround, consider restricting access to the default URI to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WP-ContactForm plugin for WordPress versions 1.5 alpha and earlier **Description** The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities. These vulnerabilities allow remote attackers to perform actions as administrators. The vulnerable parameters are `wpcf question`, `wpcf success msg`, and `wpcf error msg` in the `wp-admin/admin.php` endpoint. **Recommendations** For WP-ContactForm plugin for WordPress versions 1.5 alpha and earlier, consider disabling the parameters `wpcf question`, `wpcf success msg`, and `wpcf error msg` in the `wp-admin/admin.php` endpoint as a temporary workaround until a patch is available. Restrict access to the `wp-admin/admin.php` endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WP-ContactForm plugin for WordPress version 1.5 alpha and earlier **Description** The issue allows remote attackers to inject arbitrary web script or HTML via several parameters to the wp-admin/admin.php endpoint, including `wpcf email`, `wpcf subject`, `wpcf question`, `wpcf answer`, `wpcf success msg`, `wpcf error msg`, or `wpcf msg`. Additionally, the SRC attribute of an IFRAME element is vulnerable. **Recommendations** For WP-ContactForm plugin for WordPress version 1.5 alpha and earlier, consider disabling the plugin until a patch is available to prevent exploitation. Restrict access to the wp-admin/admin.php endpoint to minimize the risk of exploitation. Avoid using the parameters `wpcf email`, `wpcf subject`, `wpcf question`, `wpcf answer`, `wpcf success msg`, `wpcf error msg`, or `wpcf msg` in the affected endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: Microsoft Visual C++ 8.0 standard library (MSVCR80.DLL) version 8.0 Description: The 64-bit versions of Microsoft Visual C++ 8.0 standard library time functions, including `localtime`, `localtime s`, `gmtime`, `gmtime s`, `ctime`, `ctime s`, `wctime`, `wctime s`, and `fstat`, trigger an assertion error instead of a NULL pointer or EINVAL when processing a time argument later than Jan 1, 3000. This might allow context-dependent attackers to cause a denial of service via large time values. The behavior is inconsistent with documentation, which does not list assertions as a possible result of an error condition. Recommendations: For Microsoft Visual C++ 8.0 standard library (MSVCR80.DLL) version 8.0, consider validating arguments to the time functions to prevent assertion errors and potential denial of service attacks. As a temporary workaround, consider adding input validation to ensure time values do not exceed Jan 1, 3000, until a more comprehensive solution is available.

**Name of the Vulnerable Software and Affected Versions** Panda Platinum Internet Security versions 10.02.01 and 11.00.00 **Description** The issue allows local users to obtain LocalSystem privileges by modifying specific service executables due to weak permissions. The executables in question are `WebProxy.exe` and `PAVSRV51.EXE`, which are stored under the product's installation directory. **Recommendations** For version 10.02.01, consider restricting access to the `WebProxy.exe` and `PAVSRV51.EXE` executables until a fix is available. For version 11.00.00, consider restricting access to the `WebProxy.exe` and `PAVSRV51.EXE` executables until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Panda Platinum Internet Security versions 2006 10.02.01 and 2007 11.00.00 **Description** The issue allows remote attackers to determine mail usage patterns due to the use of sequential message numbers in generated URLs. This occurs when a user replies to a message and the sequential message numbers are not filtered. **Recommendations** For Panda Platinum Internet Security 2006 10.02.01, consider disabling the feature that generates URLs with sequential message numbers until a fix is available. For Panda Platinum Internet Security 2007 11.00.00, restrict access to the mail usage patterns to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Panda Platinum Internet Security versions 10.02.01 through 11.00.00 **Description** The issue allows remote attackers to cause arbitrary messages to be classified as spam via a web page that contains IMG tags with predictable URLs. This could also be regarded as a cross-site request forgery (CSRF) vulnerability, where an attacker can trick the system into performing unintended actions. **Recommendations** For versions 10.02.01 through 11.00.00, consider restricting access to the spam classification feature until a patch is available. As a temporary workaround, avoid using the predictable URLs in IMG tags to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ICQ Client versions 5.04 build 2321 and earlier **Description** A Cross-Application Scripting (XAS) issue allows remote attackers to inject arbitrary web script from one application into another via a banner. This banner is processed in the My Computer zone using the Internet Explorer COM object. **Recommendations** For ICQ Client versions 5.04 build 2321 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 5.01 through 6 **Description** A buffer overflow issue exists in the URL processor, potentially allowing remote attackers to cause a denial of service or possibly execute arbitrary code via a URL with a long hostname. **Recommendations** For Microsoft Internet Explorer versions 5.01 through 6, consider applying a patch or update to resolve the issue, however, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to URLs with long hostnames to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows NT 4.0 **Description** A buffer overflow issue in cmd.exe may allow local users to execute arbitrary code via a long pathname argument to the cd command. **Recommendations** For Windows NT 4.0, apply the necessary patch or update to fix the buffer overflow issue in cmd.exe.

**Name of the Vulnerable Software and Affected Versions** Far Manager versions 1.70beta1 and earlier **Description** A stack-based buffer overflow issue allows local users to cause a denial of service, potentially leading to a crash, and possibly execute arbitrary code via a long pathname. **Recommendations** For versions 1.70beta1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a denial of service (crash or reboot) by causing two threads to process the same RPC request, which causes one thread to use memory after it has been freed, a different vulnerability than CVE-2003-0352 (Blaster/Nachi), CVE-2003-0715, and CVE-2003-0528, and as demonstrated by certain exploits against those vulnerabilities.

Name of the Vulnerable Software and Affected Versions: ICQLite version 2003a Description: The issue allows local users to gain privileges as other users by replacing executables with malicious programs, due to the ICQ Lite directory being created with an Access Control Entry (ACE) for "Full Control" privileges for Interactive Users. Recommendations: For ICQLite version 2003a, consider restricting access to the ICQ Lite directory to prevent local users from replacing executables with malicious programs. As a temporary workaround, monitor the directory for any suspicious activity and restrict the execution of any replaced executables until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.