8816 matches found
Fedora Update for arpwatch FEDORA-2012-8702
Check for the Version of arpwatch OpenVAS Vulnerability Test Fedora Update for arpwatch FEDORA-2012-8702 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Elgg Detection
The remote host is running Elgg, a web-based social networking engine written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid59655; scriptversion"1.5"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"Elgg Detection...
CVE-2012-1720
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unkno...
CVE-2012-1720
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unkno...
Design/Logic Flaw
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unkno...
CVE-2012-1720
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier, when running on Solaris, allows local users to affect confidentiality, integrity, and availability via unkno...
CVE-2012-1720
CVE-2012-1720 is an unspecified local vulnerability in the Java Runtime Environment (JRE) used by Oracle Java SE on Solaris, affecting confidentiality, integrity, and availability via unknown networking-related vectors. The initial entry lists affected Java updates (7u4 and earlier, 6u32 and earl...
Serious Tumblr Cross Site Scripting Vulnerability can be used to Spread Worms
Serious Tumblr Cross Site Scripting Vulnerability can be used to Spread Worms Two Indian Security Researchers Aditya Gupta @adi1391 and Subho Halder @sunnyrockzzs have found a serious Cross Site Scripting vulnerability in one of the most famous social networking websites Tumblr. This could be use...
RedHat Update for Red Hat Enterprise Linux 6.1 kernel RHSA-2011:0542-01
Check for the Version of Red Hat Enterprise Linux 6.1 kernel OpenVAS Vulnerability Test RedHat Update for Red Hat Enterprise Linux 6.1 kernel RHSA-2011:0542-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
RedHat Update for avahi RHSA-2011:0779-01
Check for the Version of avahi OpenVAS Vulnerability Test RedHat Update for avahi RHSA-2011:0779-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
RedHat Update for Red Hat Enterprise Linux 6.1 kernel RHSA-2011:0542-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
SocialEngine 4.2.2 - Multiple Vulnerabilities
SocialEngine 4.2.2 - Multiple Vulnerabilities Social Engine 4.2.2 Multiples Vulnerabilities Earlier versions are also possibly vulnerable. INFORMATION Product: Social Engine 4.2.2 Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Discovered by: Tiago Natel de Moura aka "i4k" Discovered...
CVE-2011-3188
The 1 IPv4 and 2 IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service disrupted networking or hijack network sessions by predicting...
CVE-2011-2699
The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service disrupted networking by predicting these values and sending crafted packets...
Design/Logic Flaw
The 1 IPv4 and 2 IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service disrupted networking or hijack network sessions by predicting...
CVE-2011-2699
The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service disrupted networking by predicting these values and sending crafted packets...
CVE-2011-3188
CVE-2011-3188 affects the Linux kernel prior to 3.1, where IPv4 and IPv6 sequence numbers/Fragment IDs are generated with a modified MD4. This predictable value generation enables remote attackers to cause DoS or hijack sessions by crafting packets. The vulnerability is mitigated by upgrading the...
Social Engine 4.2.2 CSRF / Cross Site Scripting
Exploit for php platform in category web applications Social Engine 4.2.2 Multiples Vulnerabilities Earlier versions are also possibly vulnerable. INFORMATION Product: Social Engine 4.2.2 Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Discovered by: Tiago Natel de Moura aka "i4k"...
Common Firewall Feature Enables TCP Hijacking Attacks
Attackers using a feature that is common to many firewalls, switches and other networking gear could silently hijack Web sessions on mobile and desktop devices, according to a research paper presented by two Ph.D students from the University of Michigan. The two discovered that so-called TCP...
FreeNAC 3.02 - SQL Injection / Cross-Site Scripting
FreeNAC version 3.02 SQL Injection and XSS Vulnerabilties Date: May 19, 2012 Author: Blake Software Link: http://sourceforge.net/project/showfiles.php?groupid=170004 Version: 3.02 Tested on: Ubuntu 8.04 freenac version 3.02 vmware appliance FreeNAC FreeNAC provides Virtual LAN assignment, LAN...