76 matches found
http-vuln-cve2014-2128 NSE Script
Detects whether the Cisco ASA appliance is vulnerable to the Cisco ASA SSL VPN Authentication Bypass Vulnerability CVE-2014-2128. See also: http-vuln-cve2014-2126.nse http-vuln-cve2014-2127.nse http-vuln-cve2014-2129.nse Script Arguments tls.servername See the documentation for the tls library...
Ubuntu: Security Advisory (USN-2128-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt9
July 17, 2013 Led 2.6.32-alt9 - 2.6.32-358.14.1.el6: + CVE-2012-6548 + CVE-2013-0914 + CVE-2013-1848 + CVE-2013-2128 + CVE-2013-2634 + CVE-2013-2635 + CVE-2013-2852 + CVE-2013-3222 + CVE-2013-3224 + CVE-2013-3225 + CVE-2013-3301 - added radeon firmwares...
Oracle Linux 6 : kernel (ELSA-2013-1051)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1051 advisory. - wireless b43: stop format string leaking into error msgs John Linville 971387 971389 CVE-2013-2852 - net rtnl: fix info leak on RTMGETLINK request fo...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update
An updated rhev-hypervisor6 package that fixes one security issue and various bugs is now available. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
DEBIAN-CVE-2013-2128
The tcpreadsock function in net/ipv4/tcp.c in the Linux kernel before 2.6.34 does not properly manage skb consumption, which allows local users to cause a denial of service system crash via a crafted splice system call for a TCP socket...
CVE-2013-2128
The CVE-2013-2128 issue affects the Linux kernel’s tcp_read_sock() in net/ipv4/tcp.c where skb consumption is not properly managed. This can allow local attackers to trigger a denial of service (system crash) by issuing a crafted splice() on a TCP socket. Evidence appears across multiple advisori...
Fedora Update for dokuwiki FEDORA-2012-6588
Check for the Version of dokuwiki OpenVAS Vulnerability Test Fedora Update for dokuwiki FEDORA-2012-6588 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for dokuwiki FEDORA-2012-6588
The remote host is missing an update for the Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2012-2128
Cross-site request forgery CSRF vulnerability in doku.php in DokuWiki 2012-01-25 Angua allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users. NOTE: this issue has been disputed by the vendor, who states that it is resultant from CVE-2012-2129...
CVE-2012-2128
CVE-2012-2128 concerns a CSRF vulnerability in DokuWiki’s doku.php (Angua build, 2012-01-25) that potentially allows an attacker to hijack administrator authentication and perform actions such as adding users. The issue is explicitly linked to a dispute with the vendor, who attributes the conditi...
Fedora Update for dokuwiki FEDORA-2012-6630
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 16 : dokuwiki-0-0.10.20110525.a.fc16 (2012-6628)
Fix XSS Flaw Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...
Fedora Update for dokuwiki FEDORA-2012-6628
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 17 : dokuwiki-0-0.11.20110525.a.fc17 (2012-6588)
Fix XSS flaw Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...
Memory corruption
Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-2117, CVE-2011-2124, CVE-2011-2127, and CVE-2011-2128...
CVE-2011-2128
Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-2114, CVE-2011-2117, CVE-2011-2124, and CVE-2011-2127...
CVE-2011-2128
Adobe Shockwave Player is affected by CVE-2011-2128 as part of a set of memory‑corruption vulnerabilities that can lead to arbitrary code execution. The ZDI advisory ZDI-11-221 describes remote code execution via the Shockwave 3D Asset.x32 vector (and notes user interaction is required), and the ...
CVE-2010-2128
Directory traversal vulnerability in the JE Quotation Form comjequoteform component 1.0b1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. dot dot in the view parameter to index.php...