[SECURITY] Fedora 28 Update: perl-Archive-Tar-2.28-1.fc28

Archive::Tar provides an object oriented mechanism for handling tar files. It provides class methods for quick and easy files handling while also allowing for the creation of tar file objects for custom manipulation. If you have the IO::Zlib module installed, Archive::Tar will also support...

[SECURITY] Fedora 27 Update: perl-Archive-Tar-2.28-1.fc27

Archive::Tar provides an object oriented mechanism for handling tar files. It provides class methods for quick and easy files handling while also allowing for the creation of tar file objects for custom manipulation. If you have the IO::Zlib module installed, Archive::Tar will also support...

SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2017:2569-1)

This update for tiff to version 4.0.8 fixes a several bugs and security issues: These security issues were fixed : - CVE-2017-7595: The JPEGSetupEncode function allowed remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted image bsc1033127. -...

XenServer Syslog Rotation and Tuning

Disk space on XenServer's root partition is almost at or is at capacity perdf -h There are numerous compressed "gz" files in /var/log/ from Syslog rotation...

FEI news router K1 information disclosure vulnerability

Reference source: FEI news mainstream router K1 loopholes and collect user information FEI news PSG1208K1is Fibonacci Telecommunications Company, the main push of a home router product, we through the analysis of a router firmware find there are a lot of problems. First, we use a firmware analysi...

WinRAR History

Nessus was able to gather evidence of compressed files that were opened by WinRAR. Note that only compressed files that were opened and not extracted through the explorer shortcut or command line interface were reported. C Tenable Network Security, Inc. include"compat.inc"; if...

7-Zip Recent Files

Nessus was able to query 7-Zip settings on the remote Windows host to find recently accessed compressed files. C Tenable Network Security, Inc. include"compat.inc"; if !definedfunc"nasllevel" || nasllevel 5200 exit0, "Not Nessus 5.2+"; if description scriptid92413; scriptversion"1.6";...

Adobe Recent Files

Nessus was able to query Adobe settings on the remote Windows host to find recently opened Adobe file information. C Tenable Network Security, Inc. include"compat.inc"; if !definedfunc"nasllevel" || nasllevel 5200 exit0, "Not Nessus 5.2+"; if description scriptid92414; scriptversion"1.6";...

OurPHP backend has an arbitrary file upload vulnerability

OurPHP 傲派建站系统 is a website content management system developed using PHP language, the developer is Harbin Weicheng Technology Co. The upload file management module under the "Global/Interface" module in the administration background of OurPHP has the function of uploading hidden files. Since the...

http-vuln-cve2013-7091 NSE Script

An 0 day was released on the 6th December 2013 by rubina119, and was patched in Zimbra 7.2.6. The vulnerability is a local file inclusion that can retrieve any file from the server. Currently, we read /etc/passwd and /dev/null, and compare the lengths to determine vulnerability. TODO: Add the...

Mandriva Linux Security Advisory : emacs (MDVSA-2013:076)

Updated emacs packages fix security vulnerabilities : Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent...

ClamAV AntiVirus UPX Compressed PE Executable Files Buffer Overflow (CVE-2005-2920)

A buffer overflow vulnerability has been reported in ClamAV anti-virus product...

Ubuntu Update for gzip vulnerabilities USN-889-1

Ubuntu Update for Linux kernel vulnerabilities USN-889-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8891.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for gzip vulnerabilities USN-889-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-889-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-889-1: gzip vulnerabilities

It was discovered that gzip incorrectly handled certain malformed compressed files. If a user or automated system were tricked into opening a specially crafted gzip file, an attacker could cause gzip to crash or possibly execute arbitrary code with the privileges of the user invoking the program...

Sophos Anti-Virus ZIP File Handling Denial of Service (CVE-2005-1530)

Sophos Anti-Virus AV is a product that provides virus scanning functionality for desktop and server systems. It can scan files on the local system or files downloaded from network for known viruses, Trojans, and other malicious programs. The AV product is capable of interpreting numerous...

Information disclosure

Unspecified vulnerability in SOURCENEXT Virus Security ZERO 9.5.0173 and earlier and Virus Security 9.5.0173 and earlier allows remote attackers to cause a denial of service memory consumption or application crash via malformed compressed files. NOTE: some of these details are obtained from third...

CVE-2008-4429

Unspecified vulnerability in SOURCENEXT Virus Security ZERO 9.5.0173 and earlier and Virus Security 9.5.0173 and earlier allows remote attackers to cause a denial of service memory consumption or application crash via malformed compressed files. NOTE: some of these details are obtained from third...

F-PROT Antivirus Multiple Vulnerabilities

The remote host is installed with F-PROT Antivirus, which is prone multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodf-protavmultvuln900018.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: F-PROT Antivirus Multiple Vulnerabilities Authors: Chandan S Copyright:...

Virus Security and Virus Security ZERO denial of service (DoS) vulnerability

Overview Virus Security and Virus Security ZERO provided by SOURCENEXT CORPORATION contain a denial of service DoS vulnerability. Virus Security and Virus Security ZERO are anti-virus software provided by SOURCENEXT CORPORATION. Virus Security and Virus Security ZERO contain a denial of service D...