Lucene search
+L

154 matches found

OpenVAS
OpenVAS
added 2016/04/11 12:0 a.m.32 views

CentOS Update for nspr CESA-2016:0591 centos6

Check the version of nspr SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882446";...

8.8CVSS7.7AI score0.02386EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.45 views

RHEL 6 : nss, nss-util, and nspr (RHSA-2016:0591)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0591 advisory. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server...

8.8CVSS8.7AI score0.02386EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.30 views

Scientific Linux Security Update : nss, nss-util, and nspr on SL6.x i386/x86_64 (20160405)

The following packages have been upgraded to a newer upstream version: nss 3.21.0, nss-util 3.21.0, nspr 4.11.0. Security Fixes : - A use-after-free flaw was found in the way NSS handled DHE Diffie- Hellman key exchange and ECDHE Elliptic Curve Diffie-Hellman key exchange handshake messages. A...

8.8CVSS8.5AI score0.02386EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.45 views

CentOS 6 : nspr / nss / nss-util (CESA-2016:0591)

An update for nss, nss-util, and nspr is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS8.5AI score0.02386EPSS
Exploits0References5
Cent OS
Cent OS
added 2016/04/05 12:27 p.m.71 views

nspr, nss security update

CentOS Errata and Security Advisory CESA-2016:0591 An update for nss, nss-util, and nspr is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

8.8CVSS7.6AI score0.02386EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/04/05 11:19 a.m.42 views

Moderate: Red Hat Security Advisory: nss, nss-util, and nspr security, bug fix, and enhancement update

An update for nss, nss-util, and nspr is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS7.6AI score0.02386EPSS
Exploits0References6
NVD
NVD
added 2016/03/13 6:59 p.m.24 views

CVE-2016-1979

Use-after-free vulnerability in the PK11ImportDERPrivateKeyInfoAndReturnKey function in Mozilla Network Security Services NSS before 3.21.1, as used in Mozilla Firefox before 45.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted key data...

8.8CVSS9.1AI score0.02171EPSS
Exploits0References23
OSV
OSV
added 2016/03/13 6:59 p.m.5 views

CVE-2016-1979

Use-after-free vulnerability in the PK11ImportDERPrivateKeyInfoAndReturnKey function in Mozilla Network Security Services NSS before 3.21.1, as used in Mozilla Firefox before 45.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted key data...

8.8CVSS9.3AI score
Exploits0References23
Debian CVE
Debian CVE
added 2016/03/13 6:0 p.m.60 views

CVE-2016-1979

Use-after-free vulnerability in the PK11ImportDERPrivateKeyInfoAndReturnKey function in Mozilla Network Security Services NSS before 3.21.1, as used in Mozilla Firefox before 45.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted key data...

8.8CVSS10AI score0.02171EPSS
Exploits0
CVE
CVE
added 2016/03/13 6:0 p.m.160 views

CVE-2016-1979

CVE-2016-1979 is a use-after-free vulnerability in NSS (PK11_ImportDERPrivateKeyInfoAndReturnKey) affecting NSS libraries used by Firefox prior to 45.0, with the issue triggered by crafted DER-encoded key data. Multiple connected advisories (Debian DSA/DLA entries, CentOS/CESA, and F5 advisory) c...

8.8CVSS9.1AI score0.02171EPSS
Exploits0References23Affected Software2
UbuntuCve
UbuntuCve
added 2016/03/13 12:0 a.m.30 views

CVE-2016-1979

Use-after-free vulnerability in the PK11ImportDERPrivateKeyInfoAndReturnKey function in Mozilla Network Security Services NSS before 3.21.1, as used in Mozilla Firefox before 45.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted key data...

8.8CVSS7.2AI score0.02171EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/10 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2016-0105)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.30946EPSS
Exploits9References22
OpenVAS
OpenVAS
added 2015/11/08 12:0 a.m.18 views

Oracle: Security Advisory (ELSA-2015-1979)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.5AI score0.02765EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.45 views

Oracle: Security Advisory (ELSA-2013-2525)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS6.7AI score0.47709EPSS
Exploits19References2
CVE
CVE
added 2015/07/20 1:0 a.m.50 views

CVE-2015-1979

CVE-2015-1979 details (IBM Case Manager) : Affected product is IBM Case Manager 5.2.1, vulnerable before 5.2.1.2. The issue resides in the Error dialog where remote authenticated users can inject arbitrary web script or HTML via crafted input to the (1) addressability or (2) comments component, i...

3.5CVSS5.3AI score0.00774EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2014/03/19 2:0 p.m.50 views

CVE-2014-1979

The CVE-2014-1979 issue affects NTT DOCOMO sp mode mail for Android (rev. 5900–6300 on Android 4.0.x; 6000–6620 on Android 4.1–4.4). The root cause is improper handling of Deco-mail emoticon POP data in emails, allowing remote attackers to execute arbitrary Java methods with the mail client’s pri...

6.8CVSS7.7AI score0.01696EPSS
Exploits0References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2014/02/03 12:0 a.m.84 views

Oracle Database Server AUTH_SESSKEY Stack Buffer Overflow - Ver2 (CVE-2009-1979)

A buffer overflow vulnerability has been reported in the Oracle Database server. The vulnerability is due to an error in the Oracle Database server that fails to sufficiently validate the length field of the AUTHSESSKEY parameter. A remote attacker could exploit this vulnerability by sending...

7.4AI score0.76361EPSS
Exploits11
OpenVAS
OpenVAS
added 2013/11/18 12:0 a.m.246 views

Fedora Update for kernel FEDORA-2013-20748

Check for the Version of kernel OpenVAS Vulnerability Test Fedora Update for kernel FEDORA-2013-20748 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.9CVSS1.5AI score0.09408EPSS
Exploits38References2
Tenable Nessus
Tenable Nessus
added 2013/10/01 12:0 a.m.21 views

Ubuntu 12.04 LTS / 12.10 / 13.04 : txt2man vulnerability (USN-1979-1)

Patrick J Cherry discovered that txt2man contained leftover debugging code that incorrectly created a temporary file. A local attacker could possibly use this issue to overwrite arbitrary files. In the default Ubuntu installation, this should be prevented by the Yama link restrictions. Note that...

3.3CVSS5.7AI score0.0034EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/09/24 12:0 a.m.37 views

Fedora Update for kernel FEDORA-2013-17010

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8.4AI score0.07313EPSS
Exploits35References2
Rows per page
Query Builder