4674 matches found
Fedora Update for synce-sync-engine FEDORA-2008-0680
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Thyme 1.3 - 'export_to' Local File Inclusion
| Theme Local File Inclusion / Registerglobals: off | | Version: = 1.3 | | Dork: Thyme 1. © 2006 eXtrovert Software LLC. All rights reserved | | Founded by: cheverokatgmail.com | -------------------------------------------------------------------------------------- Intro: See info...
gstreamer-plugins-good: Array index error while parsing malformed QuickTime media files via crafted Sync Sample (aka stss) atom data
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
Design/Logic Flaw
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
CVE-2009-0387
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
PYSEC-2009-15
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
CVE-2009-0387
Affects GStreamer Good Plugins (gst-plugins-good) versions 0.10.9–0.10.11, with the root cause in qtdemux_parse_samples() in gst/qtdemux/qtdemux.c. Remote attackers could crash the application and potentially execute code by crafting QuickTime (mov) Sync Sample (stss) atom data, related to “mark ...
CVE-2009-0387
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
CVE-2009-0387
Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...
CVE-2008-5744
Array index error in the dahdi/tor2.c driver in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to an incorrect tor2 patch for CVE-2008-5396 that uses the wrong variable in a range check...
Design/Logic Flaw
Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...
CVE-2008-5396
Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...
Linux each version of the local root password cracking method-vulnerability warning-the black bar safety net
This time the old met was asked and the various linux versions of the local root password cracking method, I here own and on the network to collect some information, we want to see this article and just used to give the art a little help: A RedHat/CentOS/Fedora system password cracking 1. In the...
Fedora 8 : php-Smarty-2.6.20-2.fc8 (2008-9401)
Sun Nov 2 2008 Christopher Stone 2.6.20-2 - Add security patch bz 469648 - Add RHL dist tag conditional for Requires - Mon Oct 13 2008 Christopher Stone 2.6.20-1 - Upstream sync Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...
Fedora 9 : php-Smarty-2.6.20-2.fc9 (2008-9420)
Sun Nov 2 2008 Christopher Stone 2.6.20-2 - Add security patch bz 469648 - Add RHL dist tag conditional for Requires - Mon Oct 13 2008 Christopher Stone 2.6.20-1 - Upstream sync Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...
Gentoo Security Advisory GLSA 200404-09 (heimdal)
The remote host is missing updates announced in advisory GLSA 200404-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200410-19 (glibc)
The remote host is missing updates announced in advisory GLSA 200410-19. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Newsbeuter: User-assisted execution of arbitrary code
Background Newsbeuter is a RSS/Atom feed reader for the text console. Description J.H.M. Dassen reported that the open-in-browser command does not properly escape shell metacharacters in the URL before passing it to system. Impact A remote attacker could entice a user to open a feed with speciall...
Linux Audit: Buffer overflow
Background Linux Audit is a set of userspace utilities for storing and processing auditing records. Description A stack-based buffer overflow has been reported in the auditlogusercommand function in the file lib/auditlogging.c when processing overly long arguments. Impact A local attacker could...
Fedora 8 : librapi-0.11-1.fc8 / librra-0.11-1.fc8 / libsynce-0.11-2.fc8 / odccm-0.11-1.fc8 / etc (2008-0680)
The remote Fedora host is missing one or more security updates : librra-0.11-1.fc8 : - Wed Jan 9 2008 Andreas Bierfert - 0.11-1 - version upgrade - Fri Dec 21 2007 Andreas Bierfert - 0.10.0-2 - rework BR - Wed May 9 2007 Aurelien Bompard 0.10.0-1 - version 0.10.0 synce-serial-0.11-1.fc8 : - Wed J...