136 matches found
Huawei EulerOS: Security Advisory for libXfont (EulerOS-SA-2019-2357)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-2895
Vulnerability in the Enterprise Manager for Exadata product of Oracle Enterprise Manager component: Exadata Plug-In Deploy and Ins. Supported versions that are affected are 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0 and 13.3.2.0.0. Difficult to exploit vulnerability allows low privileged attacker with...
CVE-2019-2895
Vulnerability in the Enterprise Manager for Exadata product of Oracle Enterprise Manager component: Exadata Plug-In Deploy and Ins. Supported versions that are affected are 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0 and 13.3.2.0.0. Difficult to exploit vulnerability allows low privileged attacker with...
CVE-2019-2895
CVE-2019-2895 affects Oracle Enterprise Manager for Exadata (component: Exadata Plug-In Deploy and Ins). Affects 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0, and 13.3.2.0.0. The vulnerability is exploitable remotely over HTTP by a low-privileged attacker and can lead to takeover of Enterprise Manager for ...
Oracle Enterprise Manager CVE-2019-2895 Remote Security Vulnerability
Description Oracle Enterprise Manager is prone to a remote security vulnerability in Enterprise Manager for Exadata. The vulnerability can be exploited over the 'HTTP' protocol. The 'Exadata Plug-In Deploy and Ins' component is affected. This vulnerability affects the following supported versions...
Virtuozzo Linux Errata and Bugfix Advisory 2018:2895
Upstream security update. Follow RHBA-2018:2895 for details...
CVE-2018-2895
The CVE-2018-2895 entry concerns Oracle Banking Corporate Lending (Core module) in Oracle Financial Services Applications. Affected versions are 12.3.0, 12.4.0, 12.5.0, 14.0.0, and 14.1.0. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the affected...
CVE-2018-2895
Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications subcomponent: Core module. Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network...
CVE-2017-2895
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker...
CVE-2017-2895
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker...
CVE-2017-2895
The CVE-2017-2895 issue affects Cesanta Mongoose 6.8 in its MQTT SUBSCRIBE packet parsing. The root cause is a missing bounds check when parsing topic length (topic->len read from the packet) before using it to locate the QoS byte, enabling an out-of-bounds read from the message payload. This ...
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2895-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2895-1 advisory. The DOM implementation in Chromium did not properly restrict frame-attach operations from occurring during or after frame-detach operations. If a user we...
Ubuntu: Security Advisory (USN-2895-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-2895
Buffer overflow in the up.time client in Idera Uptime Infrastructure Monitor 7.4 might allow remote attackers to execute arbitrary code via long command input...
CVE-2015-2895
CVE-2015-2895 concerns the Up.time client in Idera Uptime Infrastructure Monitor. The vulnerability is a buffer overflow in the up.time client (7.4) that could allow a remote attacker to trigger arbitrary code execution by sending input longer than a certain size. The CERT advisory notes remediat...
Up.time agent for Windows contains multiple vulnerabilities
Overview The Up.time client for Windows is vulnerable to an format string attack as well as a buffer overflow, and may allow unauthenticated users to perform certain commands. Description CWE-134: Uncontrolled Format String - CVE-2015-2894For version 6.0 and 7.2, an unauthenticated attacker on th...
Oracle: Security Advisory (ELSA-2011-1154)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201402-23
Gentoo Linux Local Security Checks GLSA 201402-23 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Fedora 21 : nx-libs-3.5.0.29-1.fc21 (2015-3948)
Update to 3.5.0.29 : - further reduction of code size by Mike Gabriel - /.x2go/config/keystrokes.cfg, /etc/x2go/keystrokes.cfg and /etc/nxagent/keystrokes.cfg are now respected thanks to Horst Schirmeier - security fixes for CVE-2011-2895, CVE-2011-4028, CVE-2013-4396, CVE-2013-6462, CVE-2014-020...
Fedora Update for kernel FEDORA-2014-8487
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...