36 matches found
MiracleLinux 3 : dnsmasq-2.45-1.1.1AXS3 (AXSA:2009-389:01)
The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2009-389:01 advisory. Dnsmasq is lightweight, easy to configure DNS forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network. It...
SUSE CVE-2009-2957
Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...
Oracle: Security Advisory (ELSA-2009-1238)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OracleVM 2.1 : dnsmasq (OVMSA-2009-0022)
The remote OracleVM system is missing necessary patches to address critical security updates : CVE-2009-2957 Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long...
Oracle Linux 5 : dnsmasq (ELSA-2009-1238)
The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-1238 advisory. - problems with strings when enabling tftp CVE-2009-2957 and CVE-2009-2957 Tenable has extracted the preceding description block directly from the Orac...
Scientific Linux Security Update : dnsmasq on SL5.x i386/x86_64
CVE-2009-2957, CVE-2009-2958 dnsmasq: multiple vulnerabilities in TFTP server Core Security Technologies discovered a heap overflow flaw in dnsmasq when the TFTP service is enabled the '--enable-tftp' command line option, or by enabling 'enable-tftp' in '/etc/dnsmasq.conf'. If the configured...
CentOS Update for dnsmasq CESA-2009:1238 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for gnutls CESA-2009:123 centos5 i386
Check for the Version of gnutls OpenVAS Vulnerability Test CentOS Update for gnutls CESA-2009:123 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Security fix for the ALT Linux 5 package dnsmasq version 2.46-alt1.1.M51.2
March 1, 2010 Mikhail Efremov 2.46-alt1.1.M51.2 - fix TFTP server vulnerabilities CVE-2009-2957, CVE-2009-2958...
Debian DSA-1876-1 : dnsmasq - buffer overflow
Several remote vulnerabilities have been discovered in the TFTP component of dnsmasq. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2957 A buffer overflow in TFTP processing may enable arbitrary code execution to attackers which are permitted to u...
Dnsmasq TFTP Service Remote Heap Buffer Overflow (CVE-2009-2957)
Dnsmasq is a lightweight DNS forwarder and DHCP server, designed to provide DNS and optionally DHCP services to a small-scale network. Dnsmasq supports static and dynamic DHCP leases and BOOTP/TFTP/PXE for network booting of diskless machines. It includes a secure, read-only, TFTP server to allow...
Fedora Core 11 FEDORA-2009-10285 (dnsmasq)
The remote host is missing an update to dnsmasq announced via advisory FEDORA-2009-10285. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora Core 10 FEDORA-2009-10252 (dnsmasq)
The remote host is missing an update to dnsmasq announced via advisory FEDORA-2009-10252. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Gentoo Security Advisory GLSA 200909-19 (dnsmasq)
The remote host is missing updates announced in advisory GLSA 200909-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CORE-2009-0820 - Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server...
CentOS Security Advisory CESA-2009:1238 (dnsmasq)
The remote host is missing updates to dnsmasq announced in advisory CESA-2009:1238. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
CVE-2009-2957
creationtimestamp| type| source ---|---|--- 2009-09-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9617...
Ubuntu: Security Advisory (USN-827-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Dnsmasq < 2.50 Heap Overflow & Null pointer Dereference Vulns
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap Overflow and...
SuSE Security Summary SUSE-SR:2009:014
The remote host is missing updates announced in advisory SUSE-SR:2009:014. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...