Fx

**Name of the Vulnerable Software and Affected Versions** What Would Seth Godin Do versions prior to 2.1.1 **Description** The issue is related to improper neutralization of input during web page generation, which allows for stored Cross-site Scripting (XSS). This enables attackers to inject malicious scripts into the website, potentially affecting user sessions. **Recommendations** For versions prior to 2.1.1, update to version 2.1.1 or later to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation. Avoid using potentially vulnerable features until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Bert Kößler Movie Database versions n/a through 1.0.11 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks. **Recommendations** For versions n/a through 1.0.11, update to a version later than 1.0.11 to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious scripts from being stored and executed. Avoid using the vulnerable Movie Database until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine versions prior to 4.2 **Description** The issue is related to multiple buffer overflows in the securecgi-bin/CSuserCGI.exe component of the User-Changeable Password (UCP) feature. This allows remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument. **Recommendations** For versions prior to 4.2, update to version 4.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the securecgi-bin/CSuserCGI.exe component to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Oracle HTTP Server versions 9.0.1.5 Oracle Application Server versions 10.1.2.0.0 through 10.1.2.0.2, 10.1.2.2, 9.0.4.3 Oracle Collaboration Suite versions 9.0.4.2, 10.1.2 Description: The issue is related to the Oracle Process Mgmt & Notification component. It may be associated with a buffer overflow in Oracle Notification Service (ONS), although the exact nature and impact of the vulnerability are not specified. The attack vectors are also not clearly defined. Recommendations: For Oracle HTTP Server version 9.0.1.5, update to a version that includes the fix for this issue. For Oracle Application Server versions 10.1.2.0.0 through 10.1.2.0.2, 10.1.2.2, 9.0.4.3, update to a version that includes the fix for this issue. For Oracle Collaboration Suite versions 9.0.4.2, 10.1.2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Oracle Notification Service (ONS) until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS version 12.1(19) **Description** The VLAN Trunking Protocol (VTP) feature in Cisco IOS contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability exists because the VTP feature does not properly handle malformed packets sent from the local network. An attacker residing on the local network segment could exploit this vulnerability via a crafted summary packet to cause a DoS condition. To exploit this vulnerability, an attacker must reside on the local network segment and send a crafted summary packet to a device supporting VTP. The device must be configured as either client or server for VTP, and the packets must be received on a trunk enabled port. Exploitation causes a DoS condition only until the device reboots, but repeated attacks could cause an extended DoS condition. **Recommendations** For Cisco IOS version 12.1(19), update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to trunk enabled ports and configuring VTP domain passwords to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS version 12.1(19) **Description** The issue is related to a heap-based buffer overflow in the VLAN Trunking Protocol (VTP) feature, which allows remote attackers to execute arbitrary code via a long VLAN name in a VTP type 2 summary advertisement. This is due to improper input validation by the VTP feature. An authenticated, remote attacker could exploit this by submitting a malicious VTP summary advertisement, potentially resulting in a buffer overflow, resetting the system, or allowing the attacker to execute arbitrary code. To exploit this, the attacker must craft a VTP summary advertisement packet that matches the domain of the target system, send it to a trunk-enabled port, and know or guess the VTP domain password if set. **Recommendations** For Cisco IOS version 12.1(19), update to the latest software version released by Cisco, as they have confirmed this vulnerability and provided an update. As a temporary workaround, consider restricting access to trunk-enabled ports and setting a strong VTP domain password to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS version 12.1(19) Cisco Catalyst OS (affected versions not specified) **Description** The issue is related to the VLAN Trunking Protocol (VTP) feature, which allows remote attackers to cause a denial of service by sending a VTP update with a specific revision value. This is due to an integer overflow error within the statistics counters, where an authenticated, remote attacker could exploit this by sending a spoofed VTP summary packet, causing the VTP statistics parameter to wrap to a negative number. This could prevent the affected device from processing further configuration changes and potentially result in a denial of service (DoS) condition. To exploit this, an attacker must have access to the local network and, in some cases, know the VTP domain password. **Recommendations** For Cisco IOS version 12.1(19), update to a newer version that includes the fix for this issue. For Cisco Catalyst OS, update to a newer version that includes the fix for this issue. As a temporary workaround, consider restricting access to the VTP feature until a patch is available. Restrict access to the local network to minimize the risk of exploitation. Use VTP configurations with authentication passwords to require attackers to know the domain password, making exploitation more difficult.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS versions 12.0 through 12.2 **Description** The issue occurs when GRE IP tunneling is used without the RFC2784 compliance fixes, leading to a failure in verifying the offset field of a GRE packet during decapsulation. This results in an integer overflow that references data from incorrect memory locations, allowing remote attackers to inject crafted packets into the routing queue. This could potentially bypass intended router ACLs. **Recommendations** For Cisco IOS versions 12.0 through 12.2, apply the RFC2784 compliance fixes to ensure proper verification of the offset field in GRE packets.

**Name of the Vulnerable Software and Affected Versions** BlackBerry Router (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in communication disruption, by sending crafted Server Routing Protocol (SRP) packets. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BlackBerry Enterprise Server versions 4.0 through 4.0 Service Pack 2 **Description** The issue allows attackers to cause a denial of service via a malformed Portable Network Graphics (PNG) file that triggers a heap-based buffer overflow in the BlackBerry Attachment Service. **Recommendations** For versions 4.0 through 4.0 Service Pack 2, apply the necessary patches or updates to fix the heap-based buffer overflow issue in the BlackBerry Attachment Service.

**Name of the Vulnerable Software and Affected Versions** BlackBerry Handheld web browser versions prior to 4.0.2 **Description** The issue allows remote attackers to cause a denial of service, resulting in the device hanging. This occurs when a Java Application Description (JAD) file contains a long application name and vendor string, preventing a browser dialog from being properly dismissed. **Recommendations** For versions prior to 4.0.2, update to version 4.0.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** BlackBerry Attachment Service (affected versions not specified) **Description** A heap-based buffer overflow issue exists, allowing remote attackers to cause a denial of service via an e-mail attachment with a crafted TIFF file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Siemens S55 cellular phones (affected versions not specified) **Description** The issue allows remote attackers to send unauthorized SMS messages by overlaying a confirmation message with a malicious message, exploiting a GUI overlay vulnerability in the Java API. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions prior to 12.2 Description: A buffer overflow issue in the HTTP server allows remote attackers to execute arbitrary code via an extremely long HTTP GET request. Recommendations: For versions prior to 12.2, update to a version later than 12.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS versions 11.2.x through 12.0.x **Description** A buffer overflow issue allows remote attackers to cause a denial of service and possibly execute commands via a large number of OSPF neighbor announcements. **Recommendations** For Cisco IOS versions 11.2.x through 12.0.x, update to a version that is not affected by this issue to prevent potential exploitation.