Microsoft Internet Explorer 11 ships with MSHTML.DLL referencing various

DLLs which are not present on a Windows 7 SP1 installationd.In addition certain applications like Microsoft

Word,Excel,Powerpoint,Project,powershell etc , as well as a certain number

of third party software are prone to remote binary planting due to using

MSHTML.DLL in some ways.

This module executes a program designed to check for a buffer overflow in glibc's getaddrinfo function. Multiple stack-based buffer overflows in the send_dg and send_vc functions in the libresolv library in the GNU C Library allow remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family.

Insufficient input validation in ImageMagick can lead to code execution when processing with certain types of files. This update introduces a module that generates an MVG format file that, when manipulated by the vulnerable versions of ImageMagick tools, deploys an agent in the supported systems.

An authenticated user may inject arbitrary xauth commands by sending an x11 channel request that includes a newline character in the x11 cookie.

The newline acts as a command separator to the xauth binary.

The injected xauth commands are performed with the effective permissions of the logged in user.

This attack requires the server to have 'X11Forwarding yes' enabled.

This module injects source xauth command to retrieve arbitrary files.

The specific flaw exists within the edit_lf_process resource of the AccuRev Reprise License Manager service. The issue lies in the ability to write arbitrary files with controlled data. An attacker could leverage this vulnerability to execute arbitrary code under the context of SYSTEM.

This update introduces more accurate information about vulnerable targets.

The specific flaw exists within the activate_doit function of the service. The issue lies in the handling of the server parameter which can result in overflowing a stack-based buffer.

This update introduces more accurate information about vulnerable targets.

Atlassian Bamboo is prone to a remote vulnerability that allows attackers to take advantage of a deserialization vulnerability present in the commons-collections Java library.



By exploiting known methods, it is possible to remotely load a InvokerTransformer Java class, which allows the execution of system commands.

The Password Manager component installed by various Trend Micro products runs a Node.js HTTP server by default. This web server opens multiple HTTP RPC ports for handling API requests. For example, the openUrlInDefaultBrowser API function, which internally maps to a ShellExecute function call, allows and attacker to execute arbitrary commands on localhost without the need of any type of credentials.

Improvement on Web Application Authentication Testing parameters to use a higher number of values between the authentication probes.

Jenkins is prone to a remote vulnerability due to deserialization of untrusted inputs, allowing attackers to instantiate arbitrary Java objects leading to remote code execution.



There are several API endpoints that allow low-privilege users to POST XML files that then get deserialized by Jenkins. Maliciously crafted XML files sent to these API endpoints could result in arbitrary code execution.



This update adds support for HTTPS and IPv6. It also allows to change the application root path.