GLSA-200409-24 : Foomatic: Arbitrary command execution in foomatic-rip filter

The remote host is affected by the vulnerability described in GLSA-200409-24 Foomatic: Arbitrary command execution in foomatic-rip filter There is a vulnerability in the foomatic-filters package. This vulnerability is due to insufficient checking of command-line parameters and environment variabl...

SnipSnap: HTTP response splitting

Background SnipSnap is a user friendly content management system with features such as wiki and weblog. Description SnipSnap contains various HTTP response splitting vulnerabilities that could potentially compromise the sites data. Some of these attacks include web cache poisoning, cross-user...

GLSA-200409-13 : LHa: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200409-13 LHa: Multiple vulnerabilities The command line argument as well as the archive parsing code of LHa lack sufficient bounds checking. Furthermore, a shell meta character command execution vulnerability exists in LHa, since...

CVE-2004-0001

Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges...

CVE-2004-0001

The CVE-2004-0001 issue is described across multiple advisories as a local privilege escalation in the AMD64 Linux kernel ptrace emulation, due to incorrect eflags handling in 32-bit ptrace. Affected: AMD64 Linux kernels; root cause: eflags processing in the ptrace emulation path; impact: local u...

CVE-2002-1446

The error checking routine used for the CVerify call on a symmetric verification key in the nCipher PKCS11 library 1.2.0 and later returns the CKROK status even when it detects an invalid signature, which could allow remote attackers to modify or forge messages...

CVE-2004-0077

The domremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the domunmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different...

GLSA-200408-27 : Gaim: New vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200408-27 Gaim: New vulnerabilities Gaim fails to do proper bounds checking when: Handling MSN messages partially fixed with GLSA 200408-12. Handling rich text format messages. Resolving local hostname. Receiving long URLs. Handli...

GLSA-200405-06 : libpng denial of service vulnerability

The remote host is affected by the vulnerability described in GLSA-200405-06 libpng denial of service vulnerability libpng provides two functions pngchunkerror and pngchunkwarning for default error and warning messages handling. These functions do not perform proper bounds checking on the provide...

Important: Red Hat Security Advisory: kernel security update

Updated Itanium kernel packages that fix a number of security issues are now available. The Linux kernel handles the basic functions of the operating system. This kernel updates several important drivers and fixes a number of bugs including potential security vulnerabilities. Paul Starzetz...

squid -- NTLM authentication denial-of-service vulnerability

A remote attacker is able to cause a denial-of-service situation, when NTLM authentication is enabled in squid. NTLM authentication uses two functions which lack correct offset checking...

CVE-2004-0495

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool...

CVE-2004-0597

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which 1 the pnghandletRNS function does not properly validate the length of transparency chunk tRNS data, or the 2 pnghandlesBIT or 3...

Mandrake Linux Security Advisory : sendmail (MDKSA-2003:042-1)

Michal Zalweski discovered a vulnerability in sendmail versions earlier than 8.12.9 in the address parser, which performs insufficient bounds checking in certain conditions due to a char to int conversion. This vulnerability makes it poissible for an attacker to take control of sendmail and is...

Mandrake Linux Security Advisory : sane (MDKSA-2003:099)

Several vulnerabilities were discovered in the saned daemon, a part of the sane package, which allows for a scanner to be used remotely. The IP address of the remote host is only checked after the first communication occurs, which causes the saned.conf restrictions to be ignored for the first...

Mandrake Linux Security Advisory : kernel (MDKSA-2003:110)

A vulnerability was discovered in the Linux kernel versions 2.4.22 and previous. A flaw in bounds checking in the dobrk function can allow a local attacker to gain root privileges. This vulnerability is known to be exploitable; an exploit is in the wild at this time. The Mandrake Linux 9.2 kernel...

CitadelUX 5.96.x - Username Remote Buffer Overflow (2)

CitadelUX 5.96.x - Username Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/10833/info A buffer overrun vulnerability is reported for Citadel/UX. The problem occurs due to insufficient bounds checking when processing 'USER' command arguments. An anonymous remote attacker may...

CitadelUX 5.96.x - Username Remote Buffer Overflow (1)

CitadelUX 5.96.x - Username Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/10833/info A buffer overrun vulnerability is reported for Citadel/UX. The problem occurs due to insufficient bounds checking when processing 'USER' command arguments. An anonymous remote attacker may...

Citadel/UX 5.9/6.x - 'Username' Remote Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/10833/info A buffer overrun vulnerability is reported for Citadel/UX. The problem occurs due to insufficient bounds checking when processing 'USER' command arguments. An anonymous remote attacker may be capable of exploiting this issue to execute...

SuSE-SA:2003:050: rsync

The remote host is missing the patch for the advisory SuSE-SA:2003:050 rsync. The rsync suite provides client and server tools to easily support an administrator keeping the files of different machines in sync. In most private networks the rsync client tool is used via SSH to fulfill his tasks. I...