Lucene search
+L

84 matches found

OpenVAS
OpenVAS
added 2012/08/10 12:0 a.m.266 views

Gentoo Security Advisory GLSA 201206-24 (apache tomcat)

The remote host is missing updates announced in advisory GLSA 201206-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.1AI score0.9444EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.43 views

SuSE 10 Security Update : Xen (ZYPP Patch Number 7699)

This update fixes a denial of service Host Crash in the XEN hypervisor. CVE-2011-2901 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. if NASLLEVEL 3000 exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description...

5.5CVSS7.2AI score0.0059EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2011/10/24 12:0 a.m.70 views

SuSE 10 Security Update : Xen (ZYPP Patch Number 7703)

This update fixes various bugs in XEN : The following security issues have been fixed : - A denial of service Host Crash in the XEN hypervisor. CVE-2011-2901 - A bug was found in the way Xen handles CPUID instruction emulation during VM exits. An unprivileged guest user can potentially use this...

5.5CVSS7.1AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2011/09/07 12:0 a.m.31 views

RHEL 5 : kernel (RHSA-2011:1212)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1212 advisory. - kernel: sctp dos CVE-2011-2482 - kernel: rpc task leak after flocking NFS share CVE-2011-2491 - kernel: /proc/PID/io infoleak CVE-2011-249...

7.8CVSS7.6AI score0.03769EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2011/06/29 12:0 a.m.40 views

SuSE 11.1 Security Update : webkit (SAT Patch Number 4765)

Webkit version 1.2.7 fixes several security issues. CVE-2010-2441 / CVE-2010-2901 / CVE-2010-4042 / CVE-2010-4492 / CVE-2010-4493 / CVE-2010-4578 / CVE-2011-0482 / CVE-2011-0778 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

10CVSS8.2AI score0.02397EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2011/05/13 12:0 a.m.40 views

openSUSE Security Update : libwebkit (openSUSE-SU-2011:0482-1)

This version upgrade of webkit to 1.2.7 fixes the following bugs : - CVE-2010-2441: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N: Permissions, Privileges, and Access Control CWE-264 - CVE-2010-2901: CVSS v2 Base Score: 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2010-4042:...

10CVSS8.1AI score0.02397EPSS
Exploits5References10
OpenVAS
OpenVAS
added 2011/05/12 12:0 a.m.51 views

Debian: Security Advisory (DSA-2188-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.5AI score0.05961EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2011/03/11 12:0 a.m.38 views

Debian DSA-2188-1 : webkit - several vulnerabilities

Several vulnerabilities have been discovered in WebKit, a Web content engine library for GTK+. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-1783 WebKit does not properly handle dynamic modification of a text node, which allows remote attackers to...

10CVSS8AI score0.05961EPSS
Exploits10References23
OpenVAS
OpenVAS
added 2011/03/05 12:0 a.m.33 views

FreeBSD Ports: webkit-gtk2

The remote host is missing an update to the system as announced in the referenced advisory. VID 35ecdcbe-3501-11e0-afcd-0015f2db7bde OpenVAS Vulnerability Test $ Description: Auto generated from VID 35ecdcbe-3501-11e0-afcd-0015f2db7bde Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

10CVSS0.1AI score0.02397EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.39 views

SuSE 11 / 11.1 Security Update : flash-player (SAT Patch Numbers 2900 / 2901)

Flash Player was updated to version 10.1.82.76 fixing several critical security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if...

9.3CVSS5.3AI score0.06751EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2010/10/11 12:0 a.m.38 views

SuSE 10 Security Update : Tomcat 5 (ZYPP Patch Number 6839)

This update of tomcat5/6 fixes : - Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. CVE-2009-2901: CVSS v2 Base Score: 4.3 When autoDeploy is enabled the autodeployment process deployed appBase files that...

5.8CVSS5.2AI score0.1078EPSS
Exploits0References6
NVD
NVD
added 2010/07/28 8:0 p.m.18 views

CVE-2010-2901

The rendering implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...

10CVSS9.4AI score0.02397EPSS
Exploits1References6
CVE
CVE
added 2010/07/28 7:32 p.m.80 views

CVE-2010-2901

CVE-2010-2901 affects Google Chrome rendering before 5.0.375.125, with memory corruption enabling remote denial of service via unknown vectors. Public records in multiple feeds (Ubuntu USN-1195-1, openSUSE, Gentoo GLSA/GNU patches) confirm this CVE and reference a Chrome/Chromium exposure prior t...

10CVSS9.1AI score0.02397EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2010/05/20 12:0 a.m.92 views

[security bulletin] HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting (XSS), Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02181353 Version: 1 HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting XSS, Denial of Service DoS NOTICE: The information in this Security...

7.5CVSS0.3AI score0.9444EPSS
Exploits18
Apache Tomcat
Apache Tomcat
added 2010/04/20 12:0 a.m.53 views

Fixed in Apache Tomcat 5.5.29

Low: Arbitrary file deletion and/or alteration on deploy CVE-2009-2693 When deploying WAR files, the WAR files were not checked for directory traversal attempts. This allows an attacker to create arbitrary content outside of the web root by including entries such as ../../bin/catalina.sh in the...

7.5CVSS5.9AI score0.78995EPSS
Exploits10Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/04/09 12:0 a.m.32 views

openSUSE Security Update : tomcat6 (tomcat6-2000)

This update of tomcat5/6 fixes : - CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. - CVE-2009-2901: CVSS v2 Base Score: 4.3 When...

5.8CVSS5.8AI score0.18685EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2010/04/09 12:0 a.m.50 views

SuSE Security Update: Security update for Tomcat 5 (tomcat5-6841)

This update of tomcat5/6 fixes: CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. CVE-2009-2901: CVSS v2 Base Score: 4.3 When...

5.8CVSS5.3AI score0.1078EPSS
Exploits0References3
CVE
CVE
added 2010/01/28 8:0 p.m.125 views

CVE-2009-2901

The CVE-2009-2901 entry describes an authentication bypass in Apache Tomcat when the autodeployment (autoDeploy) feature is enabled. Affected versions are Tomcat 5.5.0–5.5.28 and 6.0.0–6.0.20, where appBase files left from a failed undeploy can be deployed and used to bypass intended authenticati...

4.3CVSS5.7AI score0.08151EPSS
Exploits0References34Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/01/25 12:0 a.m.43 views

Apache Tomcat < 5.5.29 / 6.0.24

Binary data 800619.prm...

5.8CVSS7.2AI score0.1078EPSS
Exploits0References5
CVE
CVE
added 2008/06/30 6:0 p.m.38 views

CVE-2008-2901

CVE-2008-2901 affects Haudenschilt Family Connections CMS (FCMS) 1.4. Multiple SQL injection vulnerabilities exist that allow remote authenticated users to execute arbitrary SQL commands via (1) address parameter to addressbook.php, (2) getnews parameter to familynews.php, and (3) poll_id paramet...

6.5CVSS8.1AI score0.00856EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder