HP-UX Security Patch : PHKL_30190

Probe,IDDS,PM,VM,PA-8700,AIO,T600,FS,PDC,CLK %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26398; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...

HP-UX Security Patch : PHSS_20716

CDE Runtime DEC99 Periodic Patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26584; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX Security Patch : PHNE_29445

libnssdns DNS backend patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26506; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

[SA14263] Siteman Site Owner Registration Security Bypass Vulnerability

TITLE: Siteman Site Owner Registration Security Bypass Vulnerability SECUNIA ADVISORY ID: SA14263 VERIFY ADVISORY: http://secunia.com/advisories/14263/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Siteman 1.x http://secunia.com/product/4655/ DESCRIPTION: A...

HP-UX Security Patch : PHNE_29774

sendmail1m 8.9.3 patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid16876; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX Security Patch : PHNE_29913

sendmail1m 8.11.1 patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid16854; scriptversion"1.12"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX Security Patch : PHNE_22397

cumulative ARPA Transport patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid17048; scriptversion"1.11"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX Security Patch : PHNE_28809

sendmail1m 8.9.3 patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid16575; scriptversion"1.11"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

Microsoft Office XP contains buffer overflow vulnerability

Overview A buffer overflow in Microsoft Office XP may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Office XP is vulnerable to a buffer overflow. According to MS05-005, the buffer overflow exists in the process that passes URL file locations to...

Microsoft Windows SMB packet validation vulnerability

Overview A vulnerability in the way that Microsoft Windows handles some SMB packets could allow remote attackers to execute code of their choosing on a vulnerable system. Description The Microsoft Server Message Block SMB, and its follow-on, Common Internet File System CIFS, are network protocols...

[SA14091] Squid Oversized Reply Header Handling Security Issue

TITLE: Squid Oversized Reply Header Handling Security Issue SECUNIA ADVISORY ID: SA14091 VERIFY ADVISORY: http://secunia.com/advisories/14091/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: Squid 2.x http://secunia.com/product/310/ DESCRIPTION: A security issue with an...

[SA13934] KOffice "Decrypt::makeFileKey2()" Buffer Overflow

TITLE: KOffice "Decrypt::makeFileKey2" Buffer Overflow SECUNIA ADVISORY ID: SA13934 VERIFY ADVISORY: http://secunia.com/advisories/13934/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: KOffice 1.x http://secunia.com/product/4155/ DESCRIPTION: A vulnerability has been...

[SA13843] Squid Username Whitespace Security Bypass Issue

TITLE: Squid Username Whitespace Security Bypass Issue SECUNIA ADVISORY ID: SA13843 VERIFY ADVISORY: http://secunia.com/advisories/13843/ CRITICAL: Less critical IMPACT: Security Bypass WHERE: From local network SOFTWARE: Squid 2.x http://secunia.com/product/310/ DESCRIPTION: A security issue has...

Veritas NetBackup "bpjava-susvc" process contains an input validation error

Overview Veritas NetBackup Administrative Assistant interface may allow users to execute arbitrary commands with elevated privileges. Description The Veritas NetBackup Administrative Assistant interface bpjava-susvc contains an input validation vulnerability. According to Veritas Alert 271727 :Wh...

Konqueror fails to restrict access to Java classes

Overview The Konqueror web browser may allow Java applets and JavaScripts to bypass the Java security settings and access restricted Java classes. Exploitation may allow a remote attacker to read and write arbitrary files on a vulnerable system. Description Konqueror is a web browser and file...

Microsoft Windows Internet Naming Service (WINS) contains a buffer overflow

Overview A buffer overflow in the WINS service may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Description The Microsoft WINS service maps IP addresses to NETBIOS computer names.The WINS protocol contains a vulnerability that may allow a remote attack...

LibTIFF vulnerable to denial-of-service condition

Overview An Integer overflow in the LibTIFF library may allow a remote attacker to cause a divide-by-zero error that results in a denial-of-service condition. Description LibTIFF is a library used to encode and decode images in Tag Image File Format TIFF format. An integer overflow in the...

Microsoft Windows Shell contains a buffer overflow

Overview A remotely exploitable buffer overflow vulnerability exists in the Microsoft Windows Shell. Description The Microsoft Windows Shell provides the basic human-computer interface for Windows systems. Microsoft describes the Shell as follows: The Windows Shell is responsible for providing th...

sudoedit can expose protected file contents

Overview Sudo's -e option sudoedit improperly handles temporary files, allowing an attacker to read files that would otherwise be inaccessible. Description Sudo is a utility that allows specific users to run certain commands as root. Beginning with version 1.6.8, sudo provides safe editing...

Microsoft Internet Explorer does not properly handle cached HTTPS contents

Overview Microsoft Internet Explorer fails to properly validate cached HTTPS contents, allowing an attacker to obtain information or spoof information on a secure web site. Description The HTTPS protocol is used to provide authentication, encryption, integrity, and non-repudiation services to web...