Moderate: Red Hat Security Advisory: avahi security update

Updated avahi packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for...

[SECURITY] Fedora 9 Update: kvm-65-15.fc9

KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running unmodified Linux or Windows images. Each virtual machine has private virtualized hardware: a network card, disk, graphics adapter, etc...

[SECURITY] Fedora 8 Update: galeon-2.0.4-6.fc8.3

Galeon is a web browser built around Gecko Mozilla's rendering engine and Necko Mozilla's networking engine. It's a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web...

Packeteer PacketShaper Web Denial of Service

The remote host is affected by a denial of service vulnerability. Description : Packeteer PacketShaper is susceptible to a denial of service vulnerability in the web management interface. Requesting a specific URL will cause the device to reboot. The user must first log in but even read-only acce...

Microsoft Windows AFD Exploits(ms08-066)

No description provided by source. include stdio.h include winsock2.h include windows.h pragma commentlib, "ws232.lib" define NTSTATUS int typedef struct PROCESSBASICINFORMATION NTSTATUS ExitStatus; PVOID PebBaseAddress; ULONG AffinityMask; ULONG BasePriority; ULONG UniqueProcessId; ULONG...

Mac OS X Multiple Vulnerabilities (Security Update 2008-007)

The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have the security update 2008-007 applied. This security update contains fixes for the following products : - Apache - Certificates - ClamAV - ColorSync - CUPS - Finder - launchd - libxslt - MySQL Server - Networking - PH...

CVE-2008-4396

Stack-based buffer overflow in Safer Networking FileAlyzer 1.6.0.0 and 1.6.0.4 beta, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via an executable with malformed version data...

CVE-2008-4396

CVE-2008-4396 affects Safer Networking FileAlyzer 1.6.0.0 and 1.6.0.4 beta (and possibly other versions). The issue is a stack-based buffer overflow in the handling of executable version data, allowing user‑assisted remote attackers to execute arbitrary code. The description provides the vulnerab...

Cisco IOS AIC HTTP传送报文远程拒绝服务漏洞

BUGTRAQ ID: 31354 CVE ID: CVE-2008-3812 CNCVE ID：CNCVE-20083812 防火墙是针对组织中网络资产进行访问控制的网络设备，防火墙一般放置在网络入口处，Cisco IOS软件提供一系列安全功能可提供用户配置简单或详细的防火墙策略。 HTTP默认使用80端口对Internet WEB服务进行传送，其由于在网络上的通用性，很少针对其合法性和标准一致性进行挑战，由于80通信一般在网络上都允许而不存在挑战，因此很多应用程序开发者借助HTTP通信作为替代的传送协议允许它们的应用程序通信通过或甚至绕过防火墙设置。当Cisco...

Gentoo Security Advisory GLSA 200601-04 (VMware)

The remote host is missing updates announced in advisory GLSA 200601-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2008-3612

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...

Design/Logic Flaw

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...

CVE-2008-3612

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...

FreeBSD Security Advisory (FreeBSD-SA-06:05.80211.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:05.80211.asc ADV FreeBSD-SA-06:05.80211.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft...

Linux Kernel x86_64 ptrace Denial Of Service Vulnerability

Linux内核存在拒绝服务漏洞，当进程执行在64位的计算机时。 本地攻击者可以利用这个问题的崩溃和内核拒绝服务的合法用户。 Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 7.10 sparc Ubuntu Ubuntu Linux 7.10...

Debian DSA-1603-1 : bind9 - DNS cache poisoning

Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting. This update changes Debian's BIND 9 packages to implement the recommended...

Input validation

Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...

CVE-2008-3081

Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...

Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability

Description Multiple vendors' implementations of the DNS protocol are prone to a DNS-spoofing vulnerability because the software fails to securely implement random values when performing DNS queries. Successfully exploiting this issue allows remote attackers to spoof DNS replies, allowing them to...

Quickly recover Word, Excel password-vulnerability warning-the black bar safety net

I give a important Word file plus a password, for security settings was more complex, did not think the time of use Forgot Password, but put your own barrier to the outside. Have to unlock a good way? Rushed to action: you can use Office Password Remover to save in a hurry. Download this green...