1871 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-14403
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings. CVE-2020-14403 Note that Nessus relies ...
Linux Distros Unpatched Vulnerability : CVE-2017-9735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jetty through 9.4.x is prone to a timing channel in util/security/Password.java, which makes it easier for remote attackers to obtain access by observing elapse...
Linux Distros Unpatched Vulnerability : CVE-2014-9674
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MacReadPOSTResource function in base/ftobjs.c in FreeType before 2.5.4 proceeds with adding to length values without validating the original values, which...
Linux Distros Unpatched Vulnerability : CVE-2013-1690
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle...
Linux Distros Unpatched Vulnerability : CVE-2017-4967
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PC...
Linux Distros Unpatched Vulnerability : CVE-2019-10171
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was incorrectly applied in RHEL 7.5. An attacker would still be...
Linux Distros Unpatched Vulnerability : CVE-2016-2523
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dnp3alprocessobject function in epan/dissectors/packet-dnp.c in the DNP3 dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 allows remote...
Linux Distros Unpatched Vulnerability : CVE-2017-12641
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. CVE-2017-12641 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2017-10672
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild...
Linux Distros Unpatched Vulnerability : CVE-2013-1732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the nsFloatManager::GetFlowArea function in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird...
Linux Distros Unpatched Vulnerability : CVE-2017-9216
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2huffmanget function in jbig2huffman.c. For...
Linux Distros Unpatched Vulnerability : CVE-2017-12894
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookupbytestring. CVE-2017-12894 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2015-8567
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service memory consumption. CVE-2015-8567 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2012-2663
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - extensions/libxttcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewa...
Linux Distros Unpatched Vulnerability : CVE-2019-17594
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap-based buffer over-read in the ncfindentry function in tinfo/comphash.c in the terminfo library in ncurses before 6.1-20191012. CVE-2019-17594 No...
Linux Distros Unpatched Vulnerability : CVE-2012-5073
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and...
Linux Distros Unpatched Vulnerability : CVE-2019-8523
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for...
Linux Distros Unpatched Vulnerability : CVE-2017-14929
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp,...
Linux Distros Unpatched Vulnerability : CVE-2020-19726
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2016-3710
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary cod...