13 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-29923
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when...
CVE-2022-2937
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title & Description values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for...
WordPress plugin Image Hover Effects Ultimate 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
Cisco RoomOS Software License Issues Vulnerability
Cisco RoomOS Software is the United States Cisco Cisco company's set of automatic management software for Cisco devices. The software is mainly used to upgrade, manage the motherboard firmware of Cisco devices. An authorization issue vulnerability exists in versions of Cisco RoomOS Software prior...
Debian DLA-270-1 : bind9 security update
A vulnerability has been found in the Internet Domain Name Server bind9 : CVE-2015-4620 Breno Silveira Soares of Servico Federal de Processamento de Dados SERPRO discovered that the BIND DNS server is prone to a denial of service vulnerability. A remote attacker who can cause a validating resolve...
Debian Security Advisory DSA 2547-1 (bind9)
The remote host is missing an update to bind9 announced via advisory DSA 2547-1. OpenVAS Vulnerability Test $Id: deb25471.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2547-1 bind9 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2517-1 : bind9 - denial of service
Einar Lonn discovered that under certain conditions bind9, a DNS server, may use cached data before initialization. As a result, an attacker can trigger an assertion failure on servers under high query load that do DNSSEC validation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
bind security update
32:9.7.3-2.3.P3 - fix DOS against recursive servers 754398 32:9.7.3-2.2.P3 - update to 9.7.3-P3 CVE-2011-2464 32:9.7.3-2.1.P1 - update to 9.7.3-P1 CVE-2011-1910...
Fedora 13 : bind-9.7.3-2.P1.fc13 (2011-7621)
Update to 9.7.3-P1 which fixes CVE-2011-1910 : - large RRSIG RRsets and negative caching can crash named Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...
Mandriva Linux Security Advisory : bind (MDVSA-2011:104)
A vulnerability has been identified and fixed in ISC BIND : Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via...
bind security update
32:9.7.3-2.1.P1 - update to 9.7.3-P1 CVE-2011-1910...
New BIND Bug Can Cause Remote Server DoS
There is a severe vulnerability in the widely deployed BIND DNS software that can allow an attacker to force a remote server to freeze and stop processing requests. The bug is in several recent versions of the BIND software. BIND is a very popular DNS package that’s maintained by the Internet...
ISC BIND 9.7.1-9.7.2-P3 IXFR / DDNS Update Combined with High Query Rate DoS
According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. There is a small window of time after an authoritative server processes a successful IXFR transfer or a dynamic update during which the IXFR / update coupled with a que...