9765 matches found
GLSA-200503-32 : Mozilla Thunderbird: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200503-32 Mozilla Thunderbird: Multiple vulnerabilities The following vulnerabilities were found and fixed in Mozilla Thunderbird: Mark Dowd from ISS X-Force reported an exploitable heap overrun in the GIF processing of obsolete...
ISS Deployment Manager Detection
The remote host appears to run ISS deployment manager. Connections are allowed to the web interface to remote install various SiteProtector components. Letting attackers know that you are using this software will help them to focus their attack or will make them change their strategy. In addition...
HP-UX PHNE_21767 : HPSBUX0010-123 Sec. Vulnerability in net.init (rev.1)
s700800 11.00 cumulative ARPA Transport patch : /sbin/init.d/net.init uses /tmp files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE21767. The text itself is copyright C Hewlett-Packard Development...
HP-UX PHCO_25110 : HPSBUX0111-176 Sec. Vulnerability in rlpdaemon (rev.1)
s700800 11.00 lpspool subsystem cumulative patch : An rlpdaemon logic flaw vulnerability has been reported to us that may allow a remote or local attacker to execute arbitrary code with superuser privilege. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks...
HP-UX PHSS_17484 : s700_800 11.00 MC/LockManager A.11.05 (Japanese) Patch
s700800 11.00 MC/LockManager A.11.05 Japanese Patch : MC/ServiceGuard and MC/LockManager exhibit improper implementation of restricted SAM functionality. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS1748...
HP-UX PHSS_21663 : HPSBUX0001-108 Sec. Vulnerability with Aserver (rev. 04)
s700800 11.00 AudioSubsystem June 2000 Periodic Patch : /opt/audio/bin/Aserver can be used to gain root access. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS21663. The text itself is copyright C...
HP-UX PHCO_22921 : HPSBUX0012-134 Sec. Vulnerability in top(1) (rev.1)
s700800 11.04 VVOS top1 cumulative patch : the top1 command has a security defect. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO22921. The text itself is copyright C Hewlett-Packard Development Company,...
HP-UX PHSS_24608 : s700_800 11.00 AudioSubsystem July 2001 Periodic Patch
s700800 11.00 AudioSubsystem July 2001 Periodic Patch : The remote HP-UX host is affected by multiple vulnerabilities : - The Audio Security File is world-writable. - Certain files used by the asecure program have unsafe permissions. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
HP-UX PHKL_26233 : HP-UX, Local Denial of Service (DoS) (HPSBUX00183 SSRT071370 rev.2)
s700800 11.11 VM-JFS ddlock, mmap,thread perf, user limits : The HP-UX kernel incorrectly specifies arguements for setrlimit and can produce unexpected panics. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch...
HP-UX PHNE_27442 : HP-UX running xntpd, Remote Denial of Service (DoS) (HPSBUX00232 SSRT2370 rev.2)
s700800 11.04 VVOS NTP timeservices upgrade + utilities : xntpd software may HANG or exhibit extremely poor performance. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE27442. The text itself is copyright C...
HP-UX PHSS_17810 : HPSBUX0308-273 SSRT3608 Potential security vulnerability in DCE
s700800 11.00 HP DCE/9000 1.7 Runtime cumulative patch : Potential security vulnerability in DCE. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS17810. The text itself is copyright C Hewlett-Packard...
HP-UX PHNE_20681 : HPSBUX9912-106 Security Vulnerability in wu-ftp (rev.2)
s700800 11.04 VVOS ftpd1M and ftp1 patch : Multiple vulnerabilities in wu-ftp software. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE20681. The text itself is copyright C Hewlett-Packard Development...
HP-UX PHKL_24201 : HPSBUX0210-223 Security Vulnerability with OnlineJFS 3.1 (rev. 1)
s700800 11.00 JFS;stickybit;quota access;vxmaxlink tunabl : JFS3.1 sticky bit does not function properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHKL24201. The text itself is copyright C Hewlett-Packar...
HP-UX PHKL_23628 : HP-UX Running setrlimit(1M), Denial of Service (DoS) (HPSBUX00156 SSRT071363 rev.3)
s700800 11.00 probe,sysproc,shmem,thread cumulative patch : The setrlimit allows incorrect core files Rev.1 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHKL23628. The text itself is copyright C...
CVE-2005-0441
Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise ASE 12.x before 12.5.3 ESD1 allow remote authenticated users to execute arbitrary code via the 1 attribvalid function, 2 covert function, 3 declare statement, or 4 a crafted query plan, or remote authenticated users with...
Mac OS X Multiple Vulnerabilities (Security Update 2005-001)
he remote host is missing Security Update 2005-001. This security update contains a number of fixes for the following programs : - at commands - ColorSync - libxml2 - Mail - PHP - Safari - SquirrelMail These programs have multiple vulnerabilities which may allow a remote attacker to execute...
Comersus Default Install Script Admin Access
Binary data 2554.prm...
CVE-1999-1431
ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications such as Word, installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe...
phpBB <= 2.0.10 Bot Install (Altavista) (ssh.D.Worm)
Exploit for unknown platform in category web applications ==================================================== phpBB / $ae= s//$1/; $uber=$1; $uber = s/ //g; $uber = s///g; $uber = s///g; $uber = s/wb...
CVE-2004-0216
Integer overflow in the Install Engine inseng.dll for Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious website or HTML email with a long .CAB file name, which triggers the integer overflow when calculating a buffer length and leads to a heap-bas...