738 matches found
CVE-2013-4217
The CVE-2013-4217 entry affects the OSAL crypt module in InfraStack/OSDependent/Linux/OSAL/Services/wimax_osal_crypt_services.c for Intel Wireless WiMAX Connection 2400 devices. The function OSAL_Crypt_SetEncryptedPassword logs a cleartext password during certain attempts to set a password, enabl...
CVE-2013-4219
CVE-2013-4219 : Multiple integer overflows in the Intel WiMAX Network Service up to version 1.5.2 on Intel Wireless WiMAX Connection 2400 devices allow remote attackers to trigger a heap-based buffer overflow via crafted PDU values over an L5 connection, potentially causing a component crash (DoS...
CVE-2013-4216
The CVE-2013-4216 issue affects the Intel WiMAX Network Service (Intel Wireless WiMAX Connection 2400) up to version 1.5.2. The Trace_OpenLogFile function in InfraStack/OSDependent/Linux/InfraStackModules/TraceModule/TraceModule.c creates or uses wimaxd.log with world-writable permissions, allowi...
Oracle Linux 3 : krb5 (ELSA-2009-0410)
From Red Hat Security Advisory 2009:0410 : Updated krb5 packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system whi...
Ektron 8.02 XSLT Transform Remote Code Execution
This Metasploit module exploits a vulnerability in Ektron CMS 8.02 before SP5. The vulnerability exists due to the insecure usage of XslCompiledTransform, using a XSLT controlled by the user. The module has been tested successfully on Ektron CMS 8.02 over Windows 2003 SP2, which allows to execute...
Fedora Update for gridengine FEDORA-2012-6112
Check for the Version of gridengine OpenVAS Vulnerability Test Fedora Update for gridengine FEDORA-2012-6112 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Scientific Linux Security Update : krb5 on SL3.x i386/x86_64
An input validation flaw was found in the ASN.1 Abstract Syntax Notation One decoder used by MIT Kerberos. A remote attacker could use this flaw to crash a network service using the MIT Kerberos library, such as kadmind or krb5kdc, by causing it to dereference or free an uninitialized pointer or,...
Scientific Linux Security Update : krb5 on SL4.x, SL5.x i386/x86_64
An input validation flaw was found in the ASN.1 Abstract Syntax Notation One decoder used by MIT Kerberos. A remote attacker could use this flaw to crash a network service using the MIT Kerberos library, such as kadmind or krb5kdc, by causing it to dereference or free an uninitialized pointer...
Avaya IP Office Customer Call Reporter ImageUpload Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Avaya IP Office Customer Call Reporter. Authentication is not required to exploit this vulnerability. The specific flaw exists because Avaya IP Office Customer Call Reporter allows unauthenticated...
SocialEngine 4.2.2 - Multiple Vulnerabilities
Social Engine 4.2.2 Multiples Vulnerabilities Earlier versions are also possibly vulnerable. INFORMATION Product: Social Engine 4.2.2 Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Discovered by: Tiago Natel de Moura aka "i4k" Discovered at: 10/04/2012 CVE Notified: 10/04/2012 CVE...
Fedora Update for gridengine FEDORA-2012-6177
Check for the Version of gridengine OpenVAS Vulnerability Test Fedora Update for gridengine FEDORA-2012-6177 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
[SECURITY] Fedora 16 Update: gridengine-6.2u5p2-7.fc16.3
In a typical network that does not have distributed resource management software, workstations and servers are used from 5% to 20% of the time. Even technical servers are generally less than fully utilized. This means that there are a lot of cycles that can be used productively if only users know...
[SECURITY] Fedora 15 Update: gridengine-6.2u5-10.fc15.3
In a typical network that does not have distributed resource management software, workstations and servers are used from 5% to 20% of the time. Even technical servers are generally less than fully utilized. This means that there are a lot of cycles that can be used productively if only users know...
[SECURITY] Fedora 17 Update: gridengine-2011.11-3.svn131.fc17
In a typical network that does not have distributed resource management software, workstations and servers are used from 5% to 20% of the time. Even technical servers are generally less than fully utilized. This means that there are a lot of cycles that can be used productively if only users know...
Fedora 17 : openstack-nova-2012.1-0.10.rc1.fc17 (2012-4889)
CVE-2012-1585: Long server names grow nova-api log files significantly Avoid killing dnsmasq on network service shutdown. update to Essex RC1 which fixes 159 bugs detailed here: https://launchpad.net/nova/essex/essex-rc1 Features : - Support non blocking libvirt operations Bugs : - Suppress error...
Cisco IOS Common Network Service Remote Version Disclosure
The remote Cisco device is potentially affected by an unspecified vulnerability involving a 'common network service' that may allow a remote attacker to determine the IOS version. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17777; scriptversion"1.5";...
MS Windows Active Directory Remote Code Execution Vulnerability (2640045)
This host is missing a critical security update according to Microsoft Bulletin MS11-095 OpenVAS Vulnerability Test $Id: secpodms11-095.nasl 8276 2018-01-03 12:29:18Z asteins $ MS Windows Active Directory Remote Code Execution Vulnerability 2640045 Authors: Madhuri D Copyright: Copyright c 2011...
Microsoft Active Directory CVE-2011-3406 Buffer Overflow Vulnerability
Description Microsoft Active Directory is prone to a buffer-overflow vulnerability. Successful exploits can allow attackers to execute arbitrary code with Network Service privileges. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Avaya Aura Conferencing...
Measuresoft ScadaPro xf Command Execution
Added: 11/28/2011 CVE: CVE-2011-3490 BID: 49613 OSVDB: 75490 Background ScadaPro is Real Time Data Acquisition software for Microsoft Windows. Problem ScadaPro version 4.0.0 and prior runs a legacy network service on UDP port 11234. This service contains multiple stack overflow and remote command...
[SECURITY] Fedora 16 Update: NetworkManager-0.9.1.90-3.git20110927.fc16
NetworkManager is a system network service that manages your network devices and connections, attempting to keep active network connectivity when availa ble. It manages ethernet, WiFi, mobile broadband WWAN, and PPPoE devices, and provides VPN integration with a variety of different VPN services...