150 matches found
CVE-2020-5477
...
Security Bulletin: IBM i is affected by networking BIND vulnerabilities CVE-2015-5477 and CVE-2015-4620.
Summary BM i is affected by several ISC BIND vulnerabilities. Vulnerability Details CVEID: CVE-2015-5477 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error in the handling of TKEY queries. By sending specially-crafted packets, a remote attacker could exploit this...
Security Bulletin: Vulnerability in BIND affects IBM Netezza Host Management (CVE-2015-5477)
Summary BIND vulnerability disclosed by Internet Systems Consortium ISC affects IBM Netezza Host Management. IBM Netezza Host Management has addressed this CVE. Vulnerability Details CVEID: CVE-2015-5477 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error in the handlin...
[SECURITY] [DLA 1933-1] ruby-nokogiri security update
Package : ruby-nokogiri Version : 1.6.3.1+ds-1+deb8u1 CVE ID : CVE-2019-5477 A command injection vulnerability in Nokogiri allows commands to be executed in a subprocess by Rubys Kernel.open method. For Debian 8 "Jessie", this problem has been fixed in version 1.6.3.1+ds-1+deb8u1. We recommend th...
CVE-2019-5477
A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess via Ruby's Kernel.open method. Processes are vulnerable only if the undocumented method Nokogiri::CSS::Tokenizerloadfile is being called with unsafe user input as the filename. This...
CVE-2019-5477
CVE-2019-5477 affects Nokogiri up to v1.10.3, where a command injection could occur if Ruby’s Kernel.open is used on an unsafe filename produced by Nokogiri::CSS::Tokenizer#load_file. Rexical v1.0.6 and earlier generate the problematic code; the issue was addressed when Rexical v1.0.7 and Nokogir...
CVE-2018-5477
An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and...
CVE-2018-5477
The ABB netCADOPS Web Application (versions 3.4 and prior, 7.1 and prior, 7.2x and prior, 8.0 and prior, 8.1 and prior) contains an information exposure vulnerability in the password entry section that can expose critical database information. Source advisories (NVD/CVE-2018-5477; ICSA-18-051-01)...
CVE-2008-5477
This CVE entry is rejected/not used and does not represent an active vulnerability.
ownCloud: doc.owncloud.com: CVE-2015-5477 BIND9 TKEY Vulnerability + Exploit (Denial of Service)
BIND9 TKEY Vulnerability + Exploit Denial of Service...
Oracle Linux 5 : bind97 (ELSA-2016-2094)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2094 advisory. - Fix CVE-2016-2848 - Fix CVE-2016-2776 - Fix CVE-2016-1285 and CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477...
Oracle Linux 5 / 6 : bind (ELSA-2016-2093)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2093 advisory. - Fix CVE-2016-2848 - Fix CVE-2016-2776 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285 and CVE-2016-1286...
Oracle Linux 5 / 6 / 7 : bind (ELSA-2016-1944)
The remote Oracle Linux 5 / 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-1944 advisory. - Fix CVE-2016-2776 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285 and CVE-2016-1286 - Fix...
Oracle Linux 5 : bind97 (ELSA-2016-1945)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-1945 advisory. - Fix CVE-2016-2776 - Fix CVE-2016-1285 and CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477 Tenable has extracted...
bind97 security update
32:9.7.0-21.P2.7 - Fix CVE-2016-2776 32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286 32:9.7.0-21.P2.5 - Fix CVE-2015-8704 32:9.7.0-21.P2.4 - Fix CVE-2015-8000 32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
CVE-2016-5477
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration...
CVE-2016-5477
CVE-2016-5477 refers to an unspecified vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware versions 2.1.1 and 3.0.1. The issue is described as allowing remote attackers to affect confidentiality via vectors related to Administration. Public sources in the connected ...
OracleVM 3.2 : bind (OVMSA-2016-0055)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285, CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477 - Remove...
RHEL 6 : bind (RHSA-2016:0079)
"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0079 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named C...
Important: Red Hat Security Advisory: bind security update
Updated bind packages that fix three security issues are now available for Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...