Mageia: Security Advisory (MGASA-2020-0194)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-15767

CVE-2020-15767 affects Gradle Enterprise prior to 2020.2.5. The vulnerability arises because the cookie used to convey the CSRF prevention token is not annotated with the Secure attribute, enabling an attacker who can perform MITM on plain HTTP requests to obtain the token when a user accesses th...

MGASA-2020-0194 Updated gnuchess packages fix security vulnerability

Updated gnuchess package fixes security vulnerability: A vulnerability was found in GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file CVE-2019-15767...

Updated gnuchess packages fix security vulnerability

Updated gnuchess package fixes security vulnerability: A vulnerability was found in GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file CVE-2019-15767...

Fedora 31 : gnuchess (2020-dbccd7e9be)

6.2.6 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc. The...

CVE-2019-15767

In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file...

CVE-2019-15767

In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file...

CVE-2019-15767

CVE-2019-15767 affects GNU Chess 6.2.5, with a stack-based buffer overflow in cmd_load (frontend/cmd.cc) triggered by a crafted EPD file in an external position. Connected sources (Mageia, Fedora/OpenVAS advisories, and OSV entries) confirm this vulnerability and document fixes in later gnuchess ...

CVE-2019-15767

In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file...

Dell OpenManage Network Manager Authentication Bypass (CVE-2018-15767)

An authentication bypass vulnerability exists in Dell OpenManage Network Manager. The vulnerability is due to a misconfiguration in the /etc/sudoers file. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into t...

CVE-2018-15767

The Dell OpenManage Network Manager virtual appliance versions prior to 6.5.3 contain an improper authorization vulnerability caused by a misconfiguration in the /etc/sudoers file...

CVE-2018-15767

CVE-2018-15767 affects Dell OpenManage Network Manager before 6.5.3, caused by a misconfiguration in /etc/sudoers that results in improper authorization. The vulnerability can allow attackers to gain unauthorized access and escalate privileges on affected appliances. Dell released version 6.5.3 w...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-009.txt 1...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

Exploit for linux platform in category web applications ''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL:...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities ''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL:...

Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation Exploit

Dell OpenManage Network Manager exposes a MySQL listener that can be accessed with default credentials. This MySQL service is running as the root user, so an attacker can exploit this configuration to, e.g., deploy a backdoor and escalate privileges into the root account. Dell OpenManage Network...

CVE-2018-15767

creationtimestamp| type| source ---|---|--- 2018-11-06 15:48:22+00:00| seen| MISP/5be1b74b-6bac-48af-99dd-237e0a021402 2018-11-14 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45852...

Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation

KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-009.txt 1. Vulnerability...

Dell OpenManage Network Manager Multiple Vulnerabilities

Vulnerability Details Affected Vendor: Dell Affected Product: OpenManage Network Manager Affected Version: 6.2.0.51 SP3 Platform: Embedded Linux CWE Classification: CWE-285: Improper Authorization, CWE-284: Improper Access Control Impact: Privilege Escalation Attack vector: MySQL, HTTP CVE ID:...

CVE-2017-15767

IrfanView 4.50 64-bit with CADImage plugin 12.0.0.5 is affected by CVE-2017-15767. The vulnerability allows arbitrary code execution or a denial of service via a crafted .dwg file, linked to a User Mode Write AV near NULL at CADIMAGE+0x00000000003d5b52. Affected component is the CADImage plugin w...