Ryujin

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions prior to the fixed version Windows Server 2003 SP2 Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 **Description** The issue is related to the improper handling of objects in memory by the kernel-mode driver in Windows, allowing an attacker to gain privileges via a crafted application. This could enable the attacker to run arbitrary code in kernel mode, install programs, view, change, or delete data, or create new accounts with full administrative rights. The vulnerability has been exploited in the wild. **Recommendations** For Windows Server 2003 SP2, update to a newer version to mitigate the risk. For Windows Vista SP2, update to a newer version to mitigate the risk. For Windows Server 2008 SP2 and R2 SP1, update to a newer version to mitigate the risk. For Windows 7 SP1, update to a newer version to mitigate the risk. For Windows 8, update to a newer version to mitigate the risk. For Windows 8.1, update to a newer version to mitigate the risk. For Windows Server 2012 Gold and R2, update to a newer version to mitigate the risk. For Windows RT Gold and 8.1, update to a newer version to mitigate the risk. As a temporary workaround, consider disabling the `SeDebugPrivilege` privilege until a patch is available. Restrict access to the `win32k.sys` driver to minimize the risk of exploitation. Avoid using the `winlogon` API until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Apple iTunes versions prior to 8.2 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash. This can be achieved via a crafted `itms:` URL with a long URL component after a colon. **Recommendations** For Apple iTunes versions prior to 8.2, update to version 8.2 or later to resolve the issue. As a temporary workaround, consider avoiding the use of `itms:` URLs with long components after a colon until the update is applied.

**Name of the Vulnerable Software and Affected Versions** BigAnt Messenger version 2.2 **Description** The issue is a stack-based buffer overflow in the AntServer module, allowing remote attackers to execute arbitrary code via a long URI in a request to TCP port 6080. **Recommendations** For BigAnt Messenger version 2.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the AntServer module until a patch is available. Avoid using long URIs in requests to TCP port 6080 to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** NetWin Surgemail versions 3.8k4-4 and earlier **Description** The issue is a stack-based buffer overflow in the IMAP service, allowing remote authenticated users to execute arbitrary code. This is achieved by providing a long first argument to the LIST command. **Recommendations** For versions 3.8k4-4 and earlier, update to a version later than 3.8k4-4 to resolve the issue. As a temporary workaround, consider restricting access to the IMAP service until a patch is available. Avoid using long arguments with the LIST command in the affected IMAP service to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Alt-N Technologies MDaemon version 9.6.4 **Description** The issue is related to a stack-based buffer overflow in the IMAP server. It can be triggered by a remote authenticated user via a FETCH command with a long BODY, potentially allowing the execution of arbitrary code. **Recommendations** For Alt-N Technologies MDaemon version 9.6.4, update to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MailEnable Standard Edition versions 1.x and earlier MailEnable Professional Edition versions 3.x and earlier MailEnable Enterprise Edition versions 3.x and earlier **Description** The issue affects the SMTP service, allowing remote attackers to cause a denial of service via crafted commands, specifically EXPN or VRFY commands. **Recommendations** For MailEnable Standard Edition versions 1.x and earlier, update to a version later than 1.x to resolve the issue. For MailEnable Professional Edition versions 3.x and earlier, update to a version later than 3.x to resolve the issue. For MailEnable Enterprise Edition versions 3.x and earlier, update to a version later than 3.x to resolve the issue.