Gary Oleary-Steele

**Name of the Vulnerable Software and Affected Versions** Splunk versions 4.2.x through 4.2.4 **Description** The issue allows remote authenticated administrators to execute arbitrary code by leveraging the sys module in a request to the search application. This can be achieved through a cross-site request forgery (CSRF) attack. **Recommendations** For Splunk versions 4.2.x through 4.2.4, update to version 4.2.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Splunk versions 4.0 through 4.2.5 **Description** The issue allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URI to (1) Splunk Web or (2) the Splunkd HTTP Server. **Recommendations** For versions 4.0 through 4.2.5, update to version 4.2.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Splunk versions 4.2.5 and earlier **Description** The issue allows remote attackers to read arbitrary files or execute management commands. This is possible when a Free license is selected, enabling potentially undesirable functionality within an environment that intentionally does not support authentication. Attackers can leverage the ability to create crafted data sources via a management-console session or send an HTTP request to execute management commands. **Recommendations** For Splunk versions 4.2.5 and earlier, consider disabling the ability to create crafted data sources and restrict access to management-console sessions to minimize the risk of exploitation. Additionally, limit the execution of management commands via HTTP requests until a fix is available.

**Name of the Vulnerable Software and Affected Versions** GFI MailSecurity version 8.1 **Description** The issue is a buffer overflow in the HTTP management interface, allowing remote attackers to execute arbitrary code via long headers such as `Host` and `Accept` in HTTP requests. It is noted that the vendor suggests this issue may be in an underlying Microsoft technology, potentially affecting other products as well. **Recommendations** For GFI MailSecurity version 8.1, consider restricting access to the HTTP management interface until a fix is available. As a temporary workaround, avoid using long headers in HTTP requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: RSA SecurID Web Agent versions 5 through 5.3 Description: A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via crafted chunked-encoding data. Recommendations: For RSA SecurID Web Agent versions 5 through 5.3, update to a version that contains a fix for this issue to prevent remote code execution.

**Name of the Vulnerable Software and Affected Versions** Cain & Abel versions prior to 2.67 **Description** The issue is related to multiple buffer overflows that can be triggered by remote attackers, potentially leading to a denial of service (application crash) and possibly the execution of arbitrary code. This can occur through various sniffer filters, including the PSK sniffer filter when handling an IKE packet with a large ID field, the HTTP sniffer filter, and other filters such as POP3, SMTP, IMAP, NNTP, or TDS. **Recommendations** For versions prior to 2.67, update to version 2.67 or later to resolve the issue. As a temporary workaround, consider restricting access to the sniffer filters until the update can be applied.