334 matches found
Opera: What's Next (GM#005-OP)
GreyMagic Security Advisory GM005-OP ===================================== By GreyMagic Software, Israel. 04 Feb 2003. Available in HTML format at http://security.greymagic.com/adv/gm005-op/. Topic: Opera: What's Next. Discovery date: 28 Jan 2003. Affected applications: ====================== Ope...
[INetCop Security Advisory] Remote format string vulnerability in Tanne.
======================================== INetCop Security Advisory 2003-0x82-012 ======================================== Title: Remote format string vulnerability in Tanne. 0x01. Description About: tanne is a small, secure session-management solution for HTTP. It replaces common sessions with a...
Important: Red Hat Security Advisory: : Updated nss_ldap packages fix buffer overflow
Updated nssldap packages are now available for Red Hat Linux 6.2, 7, 7.1, 7.2, and 7.3. These updates fix a potential buffer overflow which can occur when nssldap is set to configure itself using information stored in DNS, a format string bug in logging functions used in pamldap, and to properly...
CVE-2002-0979
The Java logging feature for the Java Virtual Machine in Internet Explorer writes output from functions such as System.out.println to a known pathname, which can be used to execute arbitrary code...
Format string and buffer overflow bugs in Posadis DNS Server
Format string bug on logging without syslog facility...
CVE-2001-1414
The Basic Security Module BSM for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root...
CVE-1999-1029
SSH server sshd2 before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs...
AnalogX Proxy Server Buffer Overflow Vulnerability
From "zer0-logic" [email protected]: Network Security Solutions Inc. Security Advisory Philippine based Security Company Http://www.nssolution.net Http://connect.to/nssi AnalogX Proxy Server DoS/Buffer Overflow Vulnerabilty Author: Abraham Lincoln H. Handle: zer0logic Email :...
cURL 6.1 7.4 - Remote Buffer Overflow (2)
cURL 6.1 7.4 - Remote Buffer Overflow 2 source: https://www.securityfocus.com/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax. A vulnerability exists in the version of curl included with Debian GNU/Linux 2.2 and FreeBSD prior to 4.2 release. Note that...
MDMA Advisory #6: EServ Logging Heap Overflow Vulnerability
MDMA Advisory 6 by Andrew Lewis aka. Wizdumb EServ Logging Heap Overflow Vulnerability EServ has problems handling long strings in its logging, which leads it to have a remotely exploitable heap overflow. The following code, written in Java coz it's my language of choice, demonstrates the...
PT-1999-1310 · Debian · Smtp-Refuser
Name of the Vulnerable Software and Affected Versions: Debian smtp-refuser affected versions not specified Description: The issue affects the logging facility of the Debian smtp-refuser package, allowing local users to delete arbitrary files using symbolic links. Recommendations: At the moment,...
CVE-1999-0579
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys...
DUO-PSA-2020-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...
DUO-PSA-2020-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...