849 matches found
Mandriva Update for kernel MDKSA-2007:078 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDKSA-2007:078 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
openSUSE 10 Security Update : kernel (kernel-5339)
This kernel update fixes the following security problems: CVE-2008-2136: A problem in SIT IPv6 tunnel handling could be used by remote attackers to immediately crash the machine. CVE-2008-1615: On x8664 a denial of service attack could be used by local attackers to immediately panic / crash the...
Eclipse 3.3.2 IDE - Help Server helpadvancedworkingSetManager.jsp?workingSet Cross-Site Scripting
Eclipse 3.3.2 IDE - Help Server helpadvancedworkingSetManager.jsp?workingSet Cross-Site Scripting source: https://www.securityfocus.com/bid/45921/info Eclipse IDE is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...
Eclipse 3.3.2 IDE - 'Help Server help/advanced/searchView.jsp?SearchWord' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45921/info Eclipse IDE is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...
Eclipse 3.3.2 IDE - 'Help Server help/advanced/workingSetManager.jsp?workingSet' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45921/info Eclipse IDE is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...
Eclipse 3.3.2 IDE - Help Server helpadvancedsearchView.jsp?SearchWord Cross-Site Scripting
Eclipse 3.3.2 IDE - Help Server helpadvancedsearchView.jsp?SearchWord Cross-Site Scripting source: https://www.securityfocus.com/bid/45921/info Eclipse IDE is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage...
Debian Security Advisory DSA 869-1 (eric)
The remote host is missing an update to eric announced via advisory DSA 869-1. The developers of eric, a full featured Python IDE, have fixed a bug in the processing of project files that could lead to the execution of arbitrary code. The old stable distribution woody does not contain an eric...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in index.php in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to perform certain actions as arbitrary users, as demonstrated by 1 modifying data or 2 canceling a subscription. NOTE: it is not clear whether IDE...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: it is not clear whether IDE Group updates all DRS installations in its role as an application servi...
CVE-2007-4193
Multiple cross-site request forgery CSRF vulnerabilities in index.php in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to perform certain actions as arbitrary users, as demonstrated by 1 modifying data or 2 canceling a subscription. NOTE: it is not clear whether IDE...
CVE-2007-4192
Multiple cross-site scripting XSS vulnerabilities in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: it is not clear whether IDE Group updates all DRS installations in its role as an application servi...
CVE-2007-4192
CVE-2007-4192 describes multiple XSS vulnerabilities in the IDE Group DVD Rental System (DRS) 5.1 before 20070801, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. The note questions deployment coverage by IDE Group as an MSP; if all installations are upda...
CVE-2007-4193
CVE-2007-4193 covers multiple CSRF vulnerabilities in the IDE Group DVD Rental System (DRS) 5.1, reported for the request handler index.php. The issue enables remote attackers to perform actions as arbitrary users, demonstrated by (1) modifying data or (2) canceling a subscription. The root cause...
CVE-2007-4192
Multiple cross-site scripting XSS vulnerabilities in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: it is not clear whether IDE Group updates all DRS installations in its role as an application servi...
CVE-2007-4193
Multiple cross-site request forgery CSRF vulnerabilities in index.php in IDE Group DVD Rental System DRS 5.1 before 20070801 allow remote attackers to perform certain actions as arbitrary users, as demonstrated by 1 modifying data or 2 canceling a subscription. NOTE: it is not clear whether IDE...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix a security issue and a bug in the Red Hat Enterprise Linux 5 kernel are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating system. These...
security flaw
Unknown vulnerability in the SGIO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations...
Mandrake Linux Security Advisory : kernel (MDKSA-2007:078)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : When SELinux hooks are enabled, the kernel could allow a local user to cause a DoS crash via a malformed file stream that triggers a NULL pointer derefernece CVE-2006-6056. Multiple buffer overflows in the 1 read and 2...
Mandrake Linux Security Advisory : kernel (MDKSA-2007:002)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which could allow a local user to cause a Denial of Service process crash CVE-2006-5173. Th...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:151)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to and including 2.6.16-rc2, when running on x8664 systems with preemption enabled, local users can cause a DoS oops via multiple ptrace tasks that perform single steps CVE-2006-1066. Prior to 2.6.16, a...