231 matches found
Barracuda Archiver 650 - Input Validation Vulnerability
Document Title: =============== Barracuda Archiver 650 - Input Validation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=34 Release Date: ============= 2011-11-03 Vulnerability Laboratory ID VL-ID: ==================================== 34...
Supermicro IPMI Password Disclosure
== Product == Tested hardware: Supermicro X8SI6-F mainboard - IPMI firmware: 2.50 Supermicro X9SCL-F mainboard - IPMI firmware: 1.01 Likely affects other Supermicro boards of those generations that use the same type of firmware. == Problem == Modern servers often include a feature called IPMI to...
BT Voyager wireless routers information leak
It's possible to access backup configuration file and PPP account data without authentication...
CVE-2002-1892
NETGEAR FVS318 running firmware 1.1 stores the username and password in a readable format when a backup of the configuration file is made, which allows local users to obtain sensitive information...
CVE-2004-1321
The configuration backup in Asante FM2008 running firmware 1.06 stores the username and password in cleartext, which could allow remote attackers to gain unauthorized access...
CVE-2004-1321
CVE-2004-1321 affects Asante FM2008 devices running firmware 1.06. The configuration backup stores the username and password in cleartext, which could allow remote attackers to gain unauthorized access. The underlying issue is cleartext credential storage in backup data, enabling exposure of cred...
buffer overflow in sudo fixed
Sudo 1.6.3p6 is now available for Slackware 7.1 and Slackware -current. This release fixes a known buffer overflow, which could be used by malicious users to compromise parts of the system. If you rely on Sudo and use one of the above versions of Slackware, it is recommended that you upgrade to t...
Apache 1.3.14 available
Several security problems have been found in the Apache web server software. It is recommended that all users of Apache upgrade to the latest stable release to fix these problems. Apache is included in our N software series in the apache.tgz package. A new apache.tgz package including Apache 1.3....
klogd Kernel Logger vulnerability and fix
A string format / buffer overflow bug has been discovered in klogd, the kernel logging daemon. Please upgrade to the new sysklogd 1.4 package available on the Slackware FTP site. ========================================================================= sysklogd 1.4 AVAILABLE - a1/sysklogd.tgz...
: xchat input validation bug fixed
An input validation bug was found to affect Slackware Linux 7.0, 7.1, and -current. The problem is described in detail at this site: http://www.securityfocus.com/bid/1601 Users of Slackware 7.0, 7.1, and -current are urged to upgraded to the xchat.tgz package available in the Slackware -current...
Perl root exploit in Slackware 7.1 & -current
A root exploit was found in the /usr/bin/suidperl5.6.0 program that shipped with the Slackware 7.1 perl.tgz package. It is recommended that all users of Slackware 7.1 and -current upgrade to the perl.tgz package available in the Slackware -current branch. ==================================== perl...