Fatih Kilic

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 149 Thunderbird versions prior to 149 **Description** Memory safety issues exist in Firefox 148 and Thunderbird 148. These bugs demonstrate evidence of memory corruption, and it is presumed that, with sufficient effort, they could potentially be exploited to execute arbitrary code. **Recommendations** Update Firefox to version 149 or later. Update Thunderbird to version 149 or later.

**Name of the Vulnerable Software and Affected Versions** IBM OmniFind Enterprise Edition versions prior to 9.1 **Description** A cross-site request forgery (CSRF) issue exists in the administrator interface, specifically in ESAdmin/security.do. This allows remote attackers to hijack the authentication of administrators for requests, such as adding an new administrative user via a saveNewUser action. **Recommendations** For versions prior to 9.1, update to version 9.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IBM OmniFind Enterprise Edition versions prior to 8.5 FP6 **Description** The issue is related to a stack-based buffer overflow in the Java com ibm es oss CryptionNative ESEncrypt function. This function is located in the /opt/IBM/es/lib/libffq.cryptionjni.so library, which is part of the login form in the administration interface. The overflow can be triggered by a remote attacker using a long password, potentially allowing the execution of arbitrary code. **Recommendations** For IBM OmniFind Enterprise Edition versions prior to 8.5 FP6, update to version 8.5 FP6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IBM OmniFind Enterprise Edition versions prior to 9.1 **Description** The issue allows local users to gain privileges by specifying an arbitrary command name. This is related to the esRunCommand in IBM OmniFind Enterprise Edition. **Recommendations** For versions prior to 9.1, update to version 9.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IBM OmniFind Enterprise Edition versions 8.x through 9.x **Description** The issue allows remote web servers to cause a denial of service, specifically an infinite loop, by providing a crafted series of documents. This is due to the software performing web crawls with an unlimited recursion depth. **Recommendations** For IBM OmniFind Enterprise Edition versions 8.x through 9.x, consider implementing a limit on recursion depth for web crawls to prevent infinite loops. As a temporary workaround, restrict access to the web crawl functionality until a more permanent solution is available.

**Name of the Vulnerable Software and Affected Versions** IBM OmniFind Enterprise Edition versions prior to 9.1 **Description** The issue allows local users to gain privileges through an untrusted search path vulnerability in the estaskwrapper component. This is achieved by manipulating the `ES LIBRARY PATH` environment variable and the `PATH` environment variable, which is utilized during the execution of the estasklight program. **Recommendations** For versions prior to 9.1, update to version 9.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `estaskwrapper` component and limiting modifications to the `ES LIBRARY PATH` and `PATH` environment variables to minimize the risk of exploitation.