String of Critical Vulnerabilities

It seems like the vulnerability researchers have gotten over their winter slumber and are back in action. This week has seen a string of critical issues:

  1. Aurigma Image Uploader Control Remote Buffer Overflow Vulnerabilities. This impacts Facebook and MySpace users (Facebook Photo Uploader Control Remote Buffer Overflow Vulnerabilities)
  2. Nero Media Player M3U File Processing Buffer Overflow Vulnerability
  3. Apple iPhoto Photocast Handling Remote Format String Vulnerability
  4. Sun Java Runtime Environment Remote Code Execution Vulnerabilities
  5. Yahoo! Music Jukebox ActiveX Multiple Buffer Overflow Vulnerabilities

The interesting thing about this batch is that most of these are likely to be below the radar for most patching systems. Sun’s JRE might be checked, but if users install the others I doubt they’ll notice these alerts on their own.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.