93 matches found
Fedora 19 : kernel-3.9.5-301.fc19 (2013-10689)
Update to latest upstream stable release, Linux v3.9.5. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 17 : kernel-3.9.8-100.fc17 (2013-9123)
Rebase to 3.9.8 now that 3.8 is no longer maintained. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for kernel FEDORA-2013-9123
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-2148
The filleventmetadata function in fs/notify/fanotify/fanotifyuser.c in the Linux kernel through 3.9.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a read operation on the fanotify descriptor...
CVE-2013-2148
CVE-2013-2148: In Linux kernel 3.9.x, fill_event_metadata in fs/notify/fanotify/fanotify_user.c does not initialize a structure member, enabling local users to read kernel memory via a fanotify descriptor; vulnerability affects kernels up to version 3.9.4. No remediation details provided in the d...
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-263 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec -- Affected...
Symantec Veritas Storage Foundation multiple security vulnerabilities
Multiple vulnerabilities on TCP/2148 request parsing...
Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vxsvc.exe process. The problem affecting the part of the serve...
Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation Administrator Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within vxsvc.exe process. The problem affecting the...
Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation Administrator Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within vxsvc.exe. The problem affecting the part of...
CVE-2011-2148
Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to execute arbitrary commands via vectors involving a leading and trailing & ampersand character, and 1 an STTTState cookie, 2 the ctl00%24MPH%24txtAdminNewPasswordSettingText parameter, 3 the...
CVE-2011-2148
CVE-2011-2148 affects SmarterTools SmarterStats 6.0: Admin/frmSite.aspx allows remote command execution via OS command injection. The attacker can exploit a leading/trailing & and specific parameters (STTTState cookie; txtAdminNewPassword_SettingText; txtSmarterLogDirectory; ucSiteSeoSearchEngine...
Debian Security Advisory DSA 2148-1 (tor)
The remote host is missing an update to tor announced via advisory DSA 2148-1. OpenVAS Vulnerability Test $Id: deb21481.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2148-1 tor Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Debian DSA-2148-1 : tor - several vulnerabilities
The developers of Tor, an anonymizing overlay network for TCP, found three security issues during a security audit. A heap overflow allowed the execution of arbitrary code CVE-2011-0427 , a denial of service vulnerability was found in the zlib compression handling and some key memory was...
CVE-2010-2148
CVE-2010-2148 affects the Joomla! My Car (com_mycar) component version 1.0, where an SQL injection via the pagina parameter to index.php allows remote attackers to execute arbitrary SQL commands. This is the stated impact: partial confidentiality, integrity, and availability concerns. The connect...
CVE-2010-2148
creationtimestamp| type| source ---|---|--- 2010-05-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12779...
CVE-2009-2148
CVE-2009-2148 refers to an SQL injection vulnerability in Campus Virtual-LMS, specifically in news/index.php, exploitable via the id parameter. The underlying issue allows remote attackers to execute arbitrary SQL commands and could lead to unauthorized access or data manipulation. Affected softw...
CVE-2009-2148
creationtimestamp| type| source ---|---|--- 2009-06-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8937...
Ubuntu: Security Advisory (USN-625-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: cacti
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...