130 matches found
Fedora Update for php FEDORA-2007-455
Check for the Version of php OpenVAS Vulnerability Test Fedora Update for php FEDORA-2007-455 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of th...
Fedora Update for php FEDORA-2007-261
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for php FEDORA-2007-526
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for php FEDORA-2007-287
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Moderate: Red Hat Security Advisory: pam_krb5 security update
An updated pamkrb5 package that fixes a security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The pamkrb5 module allows Pluggable Authentication Modules PAM aware applications to use...
php -- multiple vulnerabilities
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2008-0907
CVE-2008-0907 describes an SQL injection in the Inhalt module of PHP-Nuke that allows remote attackers to execute arbitrary SQL commands via the cid parameter. The vulnerability impact is a loss of data confidentiality/integrity and potential unauthorized access, as indicated by the CVSS metrics ...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 2684)
This update fixes security problems also fixed in PHP 5.2.1, including following problems : - Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the 1 session, 2 zip, 3 imap, and 4 sqlite...
Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 regression (USN-424-2)
USN-424-1 fixed vulnerabilities in PHP. However, some upstream changes were not included, which caused errors in the stream filters. This update fixes the problem. We apologize for the inconvenience. Multiple buffer overflows have been discovered in various PHP modules. If a PHP application...
Important: php security update
5.1.6-12.el5 - add security fix for CVE-2007-1864, SOAP redirect handling issue, FTP CRLF injection issue 235016 5.1.6-11.el5 - add security fix for CVE-2007-1718 235016 5.1.6-9.el5 - add security fix for CVE-2007-1583 235016 - add security fixes for CVE-2007-0455, CVE-2007-1001 235036 5.1.6-7.el...
USN-424-2: PHP regression
USN-424-1 fixed vulnerabilities in PHP. However, some upstream changes were not included, which caused errors in the stream filters. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple buffer overflows have been discovered in various PHP modules...
Mandrake Linux Security Advisory : php (MDKSA-2007:048)
A number of vulnerabilities were discovered in PHP language. Many buffer overflow flaws were discovered in the PHP session extension, the strreplace function, and the imapmailcompose function. An attacker able to use a PHP application using any of these functions could trigger these flaws and...
Important: php security update
4.3.9-3.22.3 - add security fix for CVE-2007-0988 4.3.9-3.22.2 - add security fixes for CVE-2007-0906, CVE-2007-0907, CVE-2007-0908, CVE-2007-0909, CVE-2007-0910 4.3.9-3.22.1 - update oci8 build from upstream Bastien Nocera, 162241 - add conditionally patch for lib64 oci8 build Xixi D'Moon, 17396...
CVE-2007-0907
CVE-2007-0907 : Buffer underflow in PHP before 5.2.1 can cause a denial of service via the sapi_header_op function. Vulnerable in contexts covered by PHP’s pre-5.2.1 releases; impact is denial of service (availability). Remediation from the referenced advisories/changelogs indicates upgrading to ...
CVE-2006-0907
PHP-Nuke vulnerability CVE-2006-0907 affects PHP-Nuke before 7.8, patched 3.2, where remote attackers can inject SQL via encoded /%2a (/*) sequences in the query string (e.g., kala parameter) that bypass regex protections. The issue enables arbitrary SQL execution and requires an upgrade to the p...
CVE-2005-0907
CVE-2005-0907 concerns multiple SQL injection vulnerabilities in Valdersoft Shopping Cart 3.0. The affected surface includes input vectors: (1) id in category.php, (2) id in item.php, (3) lang in index.php, (4) searchQuery in search_result.php, and (5) searchTopCategoryID in search_result.php. Th...
CVE-2004-0907
CVE-2004-0907 affects Linux installs of Mozilla Firefox (pre-Preview Release), Mozilla (pre-1.7.3), and Thunderbird (pre-0.8). The root cause is insecure permissions on files created during the installation tarball extraction, which could let local users overwrite files and execute arbitrary code...
CVE-2004-0907
The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow local users to overwrite those files and execute arbitrary code...
CVE-2001-0907
CVE-2001-0907 affects Linux kernel 2.2.1–2.2.19 and 2.4.1–2.4.10. Local users can cause a denial of service by triggering a series of deeply nested symlinks, causing the kernel to spend excessive time when accessing the link. The provided documents do not specify a concrete remediation or patched...
CVE-2001-0907
Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of service via a series of deeply nested symlinks, which causes the kernel to spend extra time when trying to access the link...