153 matches found
OpenText FirstClass Client 11.005 - Code Execution
OpenText FirstClass Client 11.005 - Code Execution Exploit Title: OpenText FirstClass Client Delayed Code Executiion Date: Discovered 11/16/2010, Contacted OpenText 2/1/11 and 2/7/11, Released 4/11/2011 Author: Kyle Ossinger www.k0ss.net Email: [email protected] Software Link:...
kernel security update
CentOS Errata and Security Advisory CESA-2010:0394 Updated kernel packages that fix multiple security issues, several bugs, and add three enhancements are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Updated kernel packages that fix multiple security issues, several bugs, and add three enhancements are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200512-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200512-04 (openswan ipsec-tools)
The remote host is missing updates announced in advisory GLSA 200512-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2004-2637
The vulnerability CVE-2004-2637 affects the Zonet ZSR1104WE Wireless Router Runtime Code Version 2.41. The NAT implementation converts inbound IP addresses to the router’s IP, allowing remote attackers to bypass intended security restrictions. This is the concrete technical detail documented: the...
MS02-045: Unchecked buffer in Network Share Provider (326830)
Due to a flaw in Microsoft's SMB implementation, the remote host is vulnerable to a denial of service attack. By sending a specially crafted packet request, an attacker could launch a denial of service, causing the affected host to crash. Note that this vulnerability is not exploitable without...
idefense.smrsh.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.01.02 Sendmail smrsh bypass vulnerabilities DESCRIPTION It is possible for an attacker to bypass the restrictions imposed by The Sendmail Consortiums Restricted Shell SMRSH and execute a binary of his choosing by inserti...
CORE-20020409: Multiple vulnerabilities in stack smashing protection technologies
CORE SECURITY TECHNOLOGIES Advisory http://www.corest.com Multiple vulnerabilities in stack smashing protection technologies Date Published: 2002-04-23 Last Update: 2002-04-23 Advisory ID: CORE-20020409 Bugtraq ID: Non-assigned yet CVE CAN: Non-assigned yet Title: Multiple vulnerabilities in stac...
CVE-2001-0597
Zetetic Secure Tool for Recalling Important Passwords STRIP 0.5 and earlier for the PalmOS allows a local attacker to recover passwords via a brute force attack. This attack is made feasible by STRIP's use of SysRandom, which is seeded by TimeGetTicks, and an implementation flaw which vastly...
Linux Kernel 2.0 Sendmail - Denial of Service
/ source: https://www.securityfocus.com/bid/363/info The 2.0.x kernels have a quirk in the TCP implementation that have to do with the accept call returning after only a syn has been recieved as opposed to the three way handshake having been completed. Sendmail, which is compiled on many unices,...
Multiple vulnerabilities in stack smashing protection technologies.
Advisory ID Internal CORE-20020409 Advisory Information: Advisory ID: CORE-20020409 Bugtraq ID:4586, 4589 CVE Name: Non-assigned yet Title: Multiple vulnerabilities in stack smashing protection technologies. Class: Design limitation, Implementation flaw Remotely Exploitable: Yes Locally...
DUO-PSA-2017-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-003 Publication Date: 2018-02-27 Revision Date: 2018-02-27 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified a security flaw in a third-party library used in the Duo Network Gateway DNG which, under certain...