CA Security Advisor Newly Discovered Vulnerabilities http://www.ca.com/us/securityadvisor/vulninfo Vulnerability Newly Discovered support@ca.com en-us http://www.ca.comhttp://www.ca.com/images/icons/logo.gifCA Ruby rb_ary_store() multiple integer overflow vulnerabilities http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36498 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36498 Ruby contains multiple vulnerabilities that can allow a remote attacker to cause a denial of service condition or possibly execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/342390685" height="1" width="1"/> Microsoft Windows DNS insufficient socket entropy vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36472 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36472 Microsoft Windows DNS contains a vulnerability that can allow a remote attacker to cause DNS cache poisoning.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330359595" height="1" width="1"/> Microsoft SQL Server convert () buffer overrun vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36468 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36468 Microsoft SQL Server contains a vulnerability that can allow an attacker to gain escalated privileges.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330646476" height="1" width="1"/> Microsoft SQL Server memory page reuse information disclosure vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36467 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36467 Microsoft SQL Server contains a vulnerability that can allow an attacker to access and collect the uninitialized memory pages from another user's session.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330646478" height="1" width="1"/> Microsoft SQL Server buffer overrun vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36470 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36470 Microsoft SQL Server contains a vulnerability that can allow an attacker to gain escalated privileges.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330646479" height="1" width="1"/> Microsoft Exchange server Outlook Web Acess HTML parsing cross-site scripting vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36477 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36477 Microsoft Exchange server Outlook Web Acess contains a vulnerability that can allow an attacker to conduct cross-site scripting attacks.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330372805" height="1" width="1"/> Microsoft Windows DNS cache poisoning vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36473 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36473 Microsoft Windows contains a vulnerability that can allow a remote attacker to cause DNS cache poisoning.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330372806" height="1" width="1"/> Microsoft Exchange server Outlook Web Access data validation cross-site scripting vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36475 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36475 Microsoft Exchange server Outlook Web Access contains a vulnerability that can allow an attacker to conduct cross-site scripting attacks.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330372807" height="1" width="1"/> Microsoft Office Word document remote code execution vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36487 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36487 Microsoft Word contains a vulnerability that can allow a remote attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/331731162" height="1" width="1"/> Microsoft Windows Explorer saved search remote code execution vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36471 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36471 Microsoft Windows Explorer contains a vulnerability that can allow a remote attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330359596" height="1" width="1"/> Microsoft SQL Server memory corruption vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36469 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36469 Microsoft SQL Server contains a vulnerability that can allow an attacker to gain escalated privileges.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/330646481" height="1" width="1"/> Adobe Reader Javascript API execution of arbitary code vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36453 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36453 Adobe Reader Javascript API contains a vulnerability that allows remote attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/326471242" height="1" width="1"/> Linux Kernel information disclosure vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36448 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36448 Linux Kernel contains a vulnerability that can allow a local attacker to gain access to sensitive data.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/320528285" height="1" width="1"/> Linux Kernel ptrace and utrace race condition vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36450 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36450 Linux kernel contains a vulnerability that can allow a local attacker to cause a denial of service condition.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/336930908" height="1" width="1"/> sblim libraries arbitrary code execution vulnerability http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36446 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36446 sblim contains a vulnerability that can allow a local attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CaSecurityAdvisorNewlyDiscoveredVulnerabilities/~4/320264492" height="1" width="1"/>