Chris Rohlf

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 66.0.3359.117 Opera (affected versions not specified) **Description** The issue allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This is due to inline metadata in GarbageCollection. **Recommendations** For Google Chrome versions prior to 66.0.3359.117, update to version 66.0.3359.117 or later. At the moment, there is no information about a newer version that contains a fix for this vulnerability in Opera.

**Name of the Vulnerable Software and Affected Versions** WebKit, as used in Apple iTunes versions prior to 10.2 on Windows **Description** The issue allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via vectors related to iTunes Store browsing. **Recommendations** For Apple iTunes versions prior to 10.2 on Windows, update to version 10.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer 8 versions SP1 through SP3 **Description** A remote code execution issue exists due to improper initialization or deletion of an object in the IE8 Developer Toolbar, leading to memory corruption. This could be exploited by an attacker constructing a specially crafted Web page. When a user views this Web page, it could allow remote code execution, potentially giving the attacker the same user rights as the logged-on user. If the user has administrative rights, the attacker could take complete control of the system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. **Recommendations** For Microsoft Internet Explorer 8 versions SP1 through SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer 8 versions SP1 through SP3 **Description** A remote code execution issue exists due to improper initialization or deletion of an object in the IE8 Developer Toolbar, leading to memory corruption. This could be exploited by an attacker constructing a specially crafted Web page. When a user views this page, it could allow remote code execution, potentially giving the attacker the same user rights as the logged-on user. If the user has administrative rights, the attacker could take complete control of the system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. **Recommendations** For Microsoft Internet Explorer 8 versions SP1 through SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Streamripper versions prior to 1.62.2 **Description** The issue is related to multiple buffer overflows in the httplib parse sc header function. This allows remote attackers to execute arbitrary code via long Location and Server HTTP headers. **Recommendations** For versions prior to 1.62.2, update to version 1.62.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the httplib parse sc header function until a patch is available. Avoid using long Location and Server HTTP headers in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Snort version 2.6.1.2 **Description** The issue is related to an integer underflow in the DecodeGRE function, which can be triggered by remote attackers sending crafted GRE packets. This may lead to the corruption of log files or the writing of sensitive information into log files. **Recommendations** For Snort version 2.6.1.2, consider updating to a newer version that addresses this issue, as the current version allows for potential log file corruption or sensitive information disclosure through crafted GRE packets. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xpdf versions prior to 3.02pl4 Poppler versions prior to 0.12.1 libkscan-dev (affected versions not specified) kdegraphics-dev (affected versions not specified) xpdf-common (affected versions not specified) kviewshell (affected versions not specified) kdegraphics-dbg (affected versions not specified) kdegraphics-doc-html (affected versions not specified) kdvi (affected versions not specified) xpdf-reader (affected versions not specified) libkscan1 (affected versions not specified) xpdf-utils (affected versions not specified) kdegraphics (affected versions not specified) kdegraphics-kfile-plugins (affected versions not specified) **Description** The issue involves multiple vulnerabilities in various packages of the Debian GNU/Linux operating system, including libkscan-dev, kdegraphics-dev, xpdf-common, kviewshell, kdegraphics-dbg, kdegraphics-doc-html, kdvi, xpdf-reader, libkscan1, xpdf-utils, kdegraphics, and kdegraphics-kfile-plugins. These vulnerabilities can be exploited remotely, potentially leading to a breach of confidentiality, integrity, and availability of protected information. Specifically, an integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. **Recommendations** For Xpdf versions prior to 3.02pl4, update to version 3.02pl4 or later. For Poppler versions prior to 0.12.1, update to version 0.12.1 or later. For libkscan-dev, consider disabling the vulnerable functions until a patch is available. For kdegraphics-dev, consider restricting access to the vulnerable modules to minimize the risk of exploitation. For xpdf-common, kviewshell, kdegraphics-dbg, kdegraphics-doc-html, kdvi, xpdf-reader, libkscan1, xpdf-utils, kdegraphics, and kdegraphics-kfile-plugins, at the moment, there is no information about a newer version that contains a fix for this vulnerability.