104 matches found
DEBIAN-CVE-2017-6497
An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference thus, a DoS...
CVE-2017-6497
An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference thus, a DoS...
CVE-2017-6497
CVE-2017-6497 entry is rejected by its CNA and is not a valid vulnerability.
CVE-2016-6497
main/java/org/apache/directory/groovyldap/LDAP.java in the Groovy LDAP API in Apache allows attackers to conduct LDAP entry poisoning attacks by leveraging setting returnObjFlag to true for all search methods...
CVE-2016-6497
The CVE-2016-6497 issue affects Apache Groovy LDAP API (Groovy LDAP), specifically main/java/org/apache/directory/groovyldap/LDAP.java. The vulnerability stems from enabling returnObjFlag to true for all search methods, which attackers could abuse to perform LDAP entry poisoning attacks. The prov...
seatguru.com XSS vulnerability
Vulnerable URL: http://www.seatguru.com/findseatmap/findseatmap.php Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6497 VIP website status:| Yes Check seatguru.com SSL connection:| Grade: C+ Coordinated Disclosu...
SUSE: Security Advisory for clamav (SUSE-SU-2014:1571-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory for clamav (SUSE-SU-2014:1574-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Magento 1.9.2 File Inclusion Vulnerability
Magento versions 1.9.2 and below suffer from an autoloaded file inclusion vulnerability. ------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118....
Magento 1.9.2 File Inclusion
------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118. / @var $product MageCatalogModelProduct / 119. $product = Mage::getModel'catalog/product...
Magento <= 1.9.2 (catalogProductCreate) Autoloaded File Inclusion Vulnerability
Software Link:http://magento.com/- Affected Versions:Version 1.9.2 and prior versions.- Vulnerability Description:The vulnerability is caused by the "catalogProductCreate" SOAP API implementation,which is defined into the /app/code/core/Mage/Catalog/Model/Product/Api/V2.php script:109. public...
Debian DLA-95-1 : clamav security update
Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the command line anti-virus scanner included in the package, which could lead to crashes when scanning certain files. CVE-2013-6497 The second issue is in libclamav which caused a heap buffer overflow when...
Low: clamav
Issue Overview: clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file. Affected Packages: clamav Issue Correction: Run yum update clamav or yum update --advisory ALAS-2014-457 to update your syste...
SuSE 11.3 Security Update : clamav (SAT Patch Number 10016)
clamav was updated to version 0.98.5 to fix three security issues and several non-security issues. These security issues have been fixed : - Crash when scanning maliciously crafted yoda's crypter files. CVE-2013-6497 - Heap-based buffer overflow when scanning crypted PE files. CVE-2014-9050 - Cra...
openSUSE: Security Advisory for clamav (openSUSE-SU-2014:1560-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for clamav (important)
clamav was updated to version 0.98.5 to fix two security issues. These security issues were fixed: - Segmentation fault when processing certain files CVE-2013-6497. - Heap-based buffer overflow when scanning crypted PE files CVE-2014-9050. The following non-security issues were fixed: - Support f...
[SECURITY] [DLA 95-1] clamav security update
this was initially sent on 2014-11-27, but did not reach the list due to a mistake on my side Package : clamav Version : 0.98.1+dfsg-1+deb6u4 CVE ID : CVE-2014-9050 CVE-2013-6497 Debian Bug : 770985 Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the...
CVE-2013-6497
clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file...
Fedora Update for clamav FEDORA-2014-15463
Check the version of clamav SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868522";...
DLA-95-1 clamav - security update
Bulletin has no description...