150 matches found
CVE-2015-0862
CVE-2015-0862 affects RabbitMQ’s management plugin before 3.4.3, where multiple XSS vectors exist in the management UI. An authenticated user could inject arbitrary script/HTML via (1) message details when unqueued, (2) policy names, (3) AMQP client details, (4) usernames, (5) cluster name, or (6...
openSUSE Security Update : java-1_6_0-sun (openSUSE-SU-2011:0633-1)
Oracle Java 6 Update 26 fixes several security vulnerabilities. Please refer to Oracle's site for further information: http://www.oracle.com/technetwork/topics/security/javacpujun e2011-313339.html CVE-2011-0862, CVE-2011-0873, CVE-2011-0815, CVE-2011-0817, CVE-2011-0863, CVE-2011-0864,...
openSUSE Security Update : xinetd (openSUSE-SU-2014:0517-1)
xinetd was updated to receive security fixes and a bug fix. Security issues fixed : - CVE-2013-4342 bnc844230 - xinetd ignored user and group directives for tcpmux services - CVE-2012-0862 bnc762294 - xinetd enabled all services when tcp multiplexing is used Also added support for setting maximum...
openSUSE Security Update : java-1_6_0-sun (openSUSE-SU-2011:0633-1)
Oracle Java 6 Update 26 fixes several security vulnerabilities. Please refer to Oracle's site for further information: http://www.oracle.com/technetwork/topics/security/javacpujun e2011-313339.html CVE-2011-0862, CVE-2011-0873, CVE-2011-0815, CVE-2011-0817, CVE-2011-0863, CVE-2011-0864,...
SuSE 11.3 Security Update : xinetd (SAT Patch Number 9021)
The multiplexing system xinetd was updated to fix security issues and a bug. Security issues fixed : - xinetd ignores user and group directives for tcpmux services. CVE-2013-4342 - xinetd enables all services when tcp multiplexing is used. Bug fixed:. CVE-2012-0862 - Services started by xinetd we...
IBM Rational Quality Manager Jazz Team Server未明远程代码执行漏洞
Bugtraq ID:65900 CVE ID:CVE-2014-0862 IBM Rational Quality Manager是一款为完整的软件开发生命周期提供集成的测试计划和测试资产的协作的,基于Web的质量管理软件。 IBM Rational Quality Manager所包含的Jazz Team服务器存在未明错误,允许远程攻击者利用漏洞执行任意代码。 0 IBM Rational Quality Manager 2.x IBM Rational Quality Manager 3.x IBM Rational Quality Manager 4.x 厂商补丁: IBM...
CVE-2014-0862
The CVE-2014-0862 entry concerns an unspecified remote-code-execution vulnerability in Jazz Team Server used by IBM Rational CLM components. Relevant fixed versions, per connected advisories, are: CLM 4.x before 4.0.6; CLM 3.x prior to 3.0.1.6 iFix 2. IBM advisories note CLM components affected i...
CVE-2013-0862
CVE-2013-0862 affects FFmpeg (libavcodec/sanm.c: process_frame_obj). The vulnerability is due to multiple integer overflows that can cause an out-of-bounds access when processing LucasArts Smush image data, leading to potential arbitrary impact on confidentiality, integrity, and availability. Aff...
Scientific Linux Security Update : xinetd on SL5.x i386/x86_64 (20130930)
When xinetd services are configured with the 'TCPMUX' or 'TCPMUXPLUS' type, and the tcpmux-server service is enabled, those services are accessible via port 1. It was found that enabling the tcpmux-server service it is disabled by default allowed every xinetd service, including those that are not...
xinetd security update
CentOS Errata and Security Advisory CESA-2013:1302 An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CV...
Oracle Linux 5 : xinetd (ELSA-2013-1302)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2013-1302 advisory. 2:2.3.14-19 - Correctly backport patches that fix the descriptor leakage - Related: 852274 -2:2.3.14-18 - Fix leaking file descriptors 852274 - Fix: Service...
RedHat Update for xinetd RHSA-2013:1302-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
xinetd security and bug fix update
2:2.3.14-19 - Correctly backport patches that fix the descriptor leakage - Related: 852274 -2:2.3.14-18 - Fix leaking file descriptors 852274 - Fix: Service disabled due to bind failure 811000 - CVE-2012-0862 xinetd: enables unintentional services over tcpmux port 788795...
RHEL 5 : xinetd (RHSA-2013:1302)
An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Low: Red Hat Security Advisory: xinetd security and bug fix update
An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 6 : xinetd (ELSA-2013-0499)
The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2013-0499 advisory. - CVE-2012-0862 xinetd: enables unintentional services over tcpmux port Tenable has extracted the preceding description block directly from the Oracle Linux...
Oracle Linux 6 : nss (ELSA-2010-0862)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2010-0862 advisory. nss: 3.12.8-1.0.1.el6 - Update expired PayPalEE.cert to fix build failure - Use blank image instead of clean.gif in nss-3.12.8-stripped.tar.bz2 3.12.8-1 - Updat...
Oracle Linux 6 : kernel (ELSA-2012-0862)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0862 advisory. - security fix compile error in commoncap.c Eric Paris 806726 CVE-2012-2123 - security fcaps: clear the same personality flags as suid when fcaps are...
Mandriva Linux Security Advisory : xinetd (MDVSA-2013:057)
A security issue was identified and fixed in xinetd : builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1...
CentOS Update for xinetd CESA-2013:0499 centos6
Check for the Version of xinetd OpenVAS Vulnerability Test CentOS Update for xinetd CESA-2013:0499 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...