738 matches found
Debian Security Advisory DSA 568-1 (cyrus-sasl-mit)
The remote host is missing an update to cyrus-sasl-mit announced via advisory DSA 568-1. OpenVAS Vulnerability Test $Id: deb5681.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 568-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
SuSE 10 Security Update : Recommended update for novell-ipsec-tools (ZYPP Patch Number 4656)
This update fixes a segfault in the GSSAPI initialization. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29961; scriptversion"1.13";...
SuSE 10 Security Update : OpenSSH (ZYPP Patch Number 2184)
Several security problems were fixed in OpenSSH : - A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. CVE-2006-4924 - If a remote attacker is able to inject network traffic this could be used to cause a client...
CVE-2007-5901
Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...
CVE-2007-5901
Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...
RHEL 4 : openssh (RHSA-2007:0703)
Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...
openssh security update
CentOS Errata and Security Advisory CESA-2007:0703 Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...
Moderate: Red Hat Security Advisory: openssh security and bug fix update
Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...
Moderate: Red Hat Security Advisory: openssh security and bug fix update
Updated openssh packages that fix a security issue and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files necessar...
CVE-2002-2328
Technical details for CVE-2002-2328 are not publicly available in the provided documents. No affected products, versions, or remediation are specified here. Monitor for updates from Red Hat/NVD/CVE sources.
CVE-2002-2328
Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service hang via an LDAP client that sets the page length to zero during a large request...
openSUSE 10 Security Update : openssh (openssh-2183)
Several security problems were fixed in OpenSSH : - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. - CVE-2006-4925: If a remote attacker is able to inject network traffic this could be used to...
krb5 RPC library unitialized pointer free
The gssrpcsvcauthgssapi function in the RPC library in MIT Kerberos 5 krb5 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes kadmind to free an uninitialized pointer during cleanup...
SOL5860 - GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798
CAN-2005-2798: GSSAPI authentication vulnerability in OpenSSH Information about this advisory is available at the following location:...
Mandrake Linux Security Advisory : krb5 (MDKSA-2007:077-1)
A vulnerability was found in the username handling of the MIT krb5 telnet daemon. A remote attacker that could access the telnet port of a target machine could login as root without requiring a password CVE-2007-0956. Buffer overflows in the kadmin server daemon were discovered that could be...
krb5 security update
CentOS Errata and Security Advisory CESA-2007:0095-01 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and...
krb5 security update
CentOS Errata and Security Advisory CESA-2007:0095 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers...
SUSE-SA:2006:062: openssh
The remote host is missing the patch for the advisory SUSE-SA:2006:062 openssh. Several security problems were fixed in OpenSSH 4.4 and the bug fixes were back ported to the openssh versions in our products. - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be use...
Novell NetMail IMAP AUTHENTICATE Buffer Overflow
This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP AUTHENTICATE GSSAPI command. By sending an overly long string, an attacker can overwrite the buffer and control program execution. Using the PAYLOAD of windows/shellbindtcp or windows/shellreversetcp allows for the most...
Fedora Core 5 : openssh-4.3p2-4.10 (2006-1011)
Mon Oct 2 2006 Tomas Mraz - 4.3p2-4.10 - improve gssapi-no-spnego patch 208102 - CVE-2006-4924 - prevent DoS on deattack detector 207957 - CVE-2006-5051 - don't call cleanups from signal handler 208459 - Wed Sep 13 2006 Tomas Mraz - 4.3p2-4.1 - sync with FC6 version - build for FC5 - Wed Aug 23...