136 matches found
Updated wireshark package fixes security vulnerabilies
The WCP dissector could crash CVE-2015-2188. The pcapng file parser could crash CVE-2015-2189. The TNEF dissector could go into an infinite loop CVE-2015-2191...
Wireshark Denial-of-Service Vulnerability-02 (Mar 2015) - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
CVE-2015-2191
Integer overflow in the dissecttnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service infinite loop via a crafted length field in a packet...
CVE-2015-2191
Wireshark vulnerability CVE-2015-2191: Integer overflow in the TNEF dissector (epan/dissectors/packet-tnef.c) can cause a denial of service (infinite loop) by crafting the packet length. Affected versions are Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4. Several advisories note this i...
KLA10518 Denial of service vulnerabilities in Wireshark
Integer overflows and other unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Original advisories Wireshark advisories Related...
IBM Tivoli Storage Manager Server 6.2.x < 6.2.6.0 Multiple Vulnerabilities
The version of IBM Tivoli Storage Manager installed on the remote host is 6.2.x prior to 6.2.6.0. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted 'ClientHello'...
IBM Tivoli Storage Manager Server 6.1.x Multiple Vulnerabilities
The version of IBM Tivoli Storage Manager installed on the remote host is 6.1 running on Windows or AIX. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted...
CVE-2014-2191
Cross-site scripting XSS vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless aka BAC-TW allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun91113...
CVE-2014-2191
The CVE-2014-2191 entry affects Cisco’s Broadcast Access Center for Telco and Wireless (BAC-TW). It is a Cross-Site Scripting (XSS) vulnerability in the BAC-TW web framework caused by insufficient input validation of a parameter, enabling an unauthenticated, remote attacker to inject arbitrary sc...
Ubuntu Update for openjdk-6 USN-2191-1
Check for the Version of openjdk-6 OpenVAS Vulnerability Test $Id: gbubuntuUSN21911.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for openjdk-6 USN-2191-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
Ubuntu: Security Advisory (USN-2191-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-2191
CVE-2013-2191 affects python-bugzilla before 0.9.0; the root cause is that SSL certificate validation is not performed, allowing man‑in‑the‑middle attackers to spoof Bugzilla servers via crafted certificates. Impact is exposure of TLS server identity and potential data tampering during authentica...
Fedora 17 : python-bugzilla-0.9.0-1.fc17 (2013-11397)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
Fedora 18 : python-bugzilla-0.9.0-1.fc18 (2013-11419)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
Fedora 19 : python-bugzilla-0.9.0-1.fc19 (2013-11336)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
Fedora Update for python-bugzilla FEDORA-2013-11397
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2012-2191
Technical details for CVE-2012-2191 are not publicly provided in the Connected documents. The available sources summarize the issue (GSKit TLS CBC timing attack) but do not include affected versions, roots, or fixes in this corpus. Monitor for updates.
Fedora Update for cherokee FEDORA-2011-14622
Check for the Version of cherokee OpenVAS Vulnerability Test Fedora Update for cherokee FEDORA-2011-14622 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for cherokee FEDORA-2011-12657
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 15 : cherokee-1.2.101-1.fc15 (2011-14634)
Latest 1.2.x upstream release Resolves bz 746532 - put some deps back: GeoIP-devel openldap-devel Latest 1.2.x upstream release .spec corrections for optional build for systemd Resolves bz 710474 Resolves bz 713307 Resolves bz 680691 Note that Tenable Network Security has extracted the preceding...