Lucene search
K

738 matches found

OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.28 views

Debian Security Advisory DSA 568-1 (cyrus-sasl-mit)

The remote host is missing an update to cyrus-sasl-mit announced via advisory DSA 568-1. OpenVAS Vulnerability Test $Id: deb5681.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 568-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.2CVSS0.6AI score0.00506EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/01/14 12:0 a.m.13 views

SuSE 10 Security Update : Recommended update for novell-ipsec-tools (ZYPP Patch Number 4656)

This update fixes a segfault in the GSSAPI initialization. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29961; scriptversion"1.13";...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.44 views

SuSE 10 Security Update : OpenSSH (ZYPP Patch Number 2184)

Several security problems were fixed in OpenSSH : - A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. CVE-2006-4924 - If a remote attacker is able to inject network traffic this could be used to cause a client...

9.3CVSS6.9AI score0.44963EPSS
Exploits9References8
Debian CVE
Debian CVE
added 2007/12/06 2:0 a.m.31 views

CVE-2007-5901

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

6.9CVSS6.4AI score0.00471EPSS
Exploits1
Cvelist
Cvelist
added 2007/12/06 2:0 a.m.31 views

CVE-2007-5901

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

7.7AI score0.00471EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2007/11/16 12:0 a.m.33 views

RHEL 4 : openssh (RHSA-2007:0703)

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

5CVSS6.6AI score0.02801EPSS
Exploits0References5
Cent OS
Cent OS
added 2007/11/15 3:52 p.m.67 views

openssh security update

CentOS Errata and Security Advisory CESA-2007:0703 Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...

5CVSS6.7AI score0.02801EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2007/11/15 1:24 p.m.32 views

Moderate: Red Hat Security Advisory: openssh security and bug fix update

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

5CVSS6.7AI score0.02801EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2007/11/07 9:0 a.m.33 views

Moderate: Red Hat Security Advisory: openssh security and bug fix update

Updated openssh packages that fix a security issue and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files necessar...

5CVSS6.7AI score0.02801EPSS
Exploits0References7
CVE
CVE
added 2007/10/26 7:0 p.m.50 views

CVE-2002-2328

Technical details for CVE-2002-2328 are not publicly available in the provided documents. No affected products, versions, or remediation are specified here. Monitor for updates from Red Hat/NVD/CVE sources.

7.1CVSS7.2AI score0.16633EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/10/26 7:0 p.m.26 views

CVE-2002-2328

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service hang via an LDAP client that sets the page length to zero during a large request...

6.8AI score0.16633EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.55 views

openSUSE 10 Security Update : openssh (openssh-2183)

Several security problems were fixed in OpenSSH : - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. - CVE-2006-4925: If a remote attacker is able to inject network traffic this could be used to...

9.3CVSS7.4AI score0.44963EPSS
Exploits9References4
RedHat Linux
RedHat Linux
added 2007/06/26 6:51 p.m.5 views

krb5 RPC library unitialized pointer free

The gssrpcsvcauthgssapi function in the RPC library in MIT Kerberos 5 krb5 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes kadmind to free an uninitialized pointer during cleanup...

10CVSS7.6AI score0.11376EPSS
Exploits1References4
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.78 views

SOL5860 - GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798

CAN-2005-2798: GSSAPI authentication vulnerability in OpenSSH Information about this advisory is available at the following location:...

5CVSS0.9AI score0.02299EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/04/05 12:0 a.m.37 views

Mandrake Linux Security Advisory : krb5 (MDKSA-2007:077-1)

A vulnerability was found in the username handling of the MIT krb5 telnet daemon. A remote attacker that could access the telnet port of a target machine could login as root without requiring a password CVE-2007-0956. Buffer overflows in the kadmin server daemon were discovered that could be...

10CVSS8.3AI score0.29842EPSS
Exploits2References6
Cent OS
Cent OS
added 2007/04/04 12:33 a.m.70 views

krb5 security update

CentOS Errata and Security Advisory CESA-2007:0095-01 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and...

10CVSS7.3AI score0.29842EPSS
Exploits2References8
Cent OS
Cent OS
added 2007/04/03 9:56 p.m.72 views

krb5 security update

CentOS Errata and Security Advisory CESA-2007:0095 Updated krb5 packages that fix a number of issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers...

10CVSS7.3AI score0.29842EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.40 views

SUSE-SA:2006:062: openssh

The remote host is missing the patch for the advisory SUSE-SA:2006:062 openssh. Several security problems were fixed in OpenSSH 4.4 and the bug fixes were back ported to the openssh versions in our products. - CVE-2006-4924: A denial of service problem has been fixed in OpenSSH which could be use...

9.3CVSS7.6AI score0.44963EPSS
Exploits9
Metasploit
Metasploit
added 2007/02/03 1:11 p.m.12 views

Novell NetMail IMAP AUTHENTICATE Buffer Overflow

This module exploits a stack buffer overflow in Novell's NetMail 3.52 IMAP AUTHENTICATE GSSAPI command. By sending an overly long string, an attacker can overwrite the buffer and control program execution. Using the PAYLOAD of windows/shellbindtcp or windows/shellreversetcp allows for the most...

7.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.41 views

Fedora Core 5 : openssh-4.3p2-4.10 (2006-1011)

Mon Oct 2 2006 Tomas Mraz - 4.3p2-4.10 - improve gssapi-no-spnego patch 208102 - CVE-2006-4924 - prevent DoS on deattack detector 207957 - CVE-2006-5051 - don't call cleanups from signal handler 208459 - Wed Sep 13 2006 Tomas Mraz - 4.3p2-4.1 - sync with FC6 version - build for FC5 - Wed Aug 23...

9.3CVSS7AI score0.44963EPSS
Exploits8References1
Rows per page
Query Builder