Advisories
Please read our Vulnerability Disclosure Policy.
Full TextIBM WebSphere MQ - ziiVSendReceiveAgent Memory Corruption Vulnerability
Mar 04, 2010
A memory corruption vulnerability was discovered that could allow an attacker to copy data outside the bounds of a memory page causing a denial of service condition and potentially code execution.
IBM - WebSphere MQ - rriDecompress Remote Denial of Service Vulnerability
Mar 04, 2010
A vulnerability was identified with the packet handling routines which would allow a malicious attacker to cause a denial of service condition.
IBM WebSphere MQ - rriLookupGet Remote Denial of Service Vulnerability
Mar 04, 2010
A vulnerability exists in the state machine which handles incoming MQ networking packets; this issue could be exploited to disrupt the MQ service for legitimate users.
Symantec's Altiris Deployment Solution - AClntUsr Local Privilege Escalation
Jan 07, 2010
A vulnerability has been identified in the autorun AClntUsr.exe binary installed as part of the Altiris software agent on managed clients. It was found to allow write access to any user.
Symantec's Altiris Deployment Solution - Client/Server Authentication Bypass
Jan 07, 2010
A vulnerability has been identified in the software agent in the client that connects to the deployment server. It does not properly track the current authentication status of the server to which it connects and so can be tricked into accepting commands without verifying the authenticity of the server.