CVE-2006-1672

The installation of Cisco Transport Controller CTC for Cisco Optical Networking System ONS 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which allows remote attackers to execute...

CVE-2006-1671

Control cards for Cisco Optical Networking System ONS 15000 series nodes before 20060405 allow remote attackers to cause a denial of service card reset via 1 a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; 2 a "crafted" IP packet to a devic...

CVE-2006-1672

The CVE-2006-1672 entry affects Cisco Optical Networking System (ONS) 15000 series nodes via Cisco Transport Controller (CTC). A Java policy file entry is installed that grants java.security.AllPermission to any http URL containing "fs/LAUNCHER.jar", enabling remote attackers to execute arbitrary...

CVE-2006-1671

CVE-2006-1671 affects Cisco Optical Networking System (ONS) 15000 series nodes prior to 20060405. The issue allows remote denial of service (card reset) via (1) a crafted IP packet to a device with secure mode EMS-to-network-element access, (2) a crafted IP packet to a device with IP on the LAN i...

CVE-2006-1672

The installation of Cisco Transport Controller CTC for Cisco Optical Networking System ONS 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which allows remote attackers to execute...

Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

Cisco Optical Networking System 15000 series / Cisco Transport Controller / Cisco 11500 Content Services Switch multiple security vulnerabilities

Multiple DoS conditions...

[Full-disclosure] Cisco Security Advisory: Cisco Optical Networking System 15000 series and Cisco Transport Controller Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory ======================= Cisco Optical Networking System 15000 series and Cisco Transport Controller Vulnerabilities =========================================================================== Advisory ID:...

kernel security update

CentOS Errata and Security Advisory CESA-2006:0144 Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the seventh regular update. This security advisory has been rated as having moderate security impact by the Red Ha...

Moderate: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 7

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the seventh regular update. This security advisory has been rated as having moderate security impact by the Red Hat Security Response Team. The Linux kernel handles...

FreeBSD Security Advisory FreeBSD-SA-06:05.80211

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:05.80211 Security Advisory The FreeBSD Project Topic: IEEE 802.11 buffer overflow Category: core Module: net80211 Announced: 2006-01-18 Credits: Karl Janmar...

FreeBSD-SA-06:05.80211

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:05.80211 Security Advisory The FreeBSD Project Topic: IEEE 802.11 buffer overflow Category: core Module: net80211 Announced: 2006-01-18 Credits: Karl Janmar...

VMware vmnat.exe/vmnet-natd Multiple FTP Command Remote Overflow

According to its version number, the VMware program on the remote host may allow an attacker to execute code on the system hosting the VMware instance. The vulnerability can be exploited by sending specially crafted FTP PORT and EPRT requests. To be exploitable, the VMware system must be configur...

GLSA-200601-04 : VMware Workstation: Vulnerability in NAT networking

The remote host is affected by the vulnerability described in GLSA-200601-04 VMware Workstation: Vulnerability in NAT networking Tim Shelton discovered that vmnet-natd, the host module providing NAT-style networking for VMware guest operating systems, is unable to process incorrect 'EPRT' and...

VMware Workstation: Vulnerability in NAT networking

Background VMware Workstation is a powerful virtual machine for developers and system administrators. Description Tim Shelton discovered that vmnet-natd, the host module providing NAT-style networking for VMware guest operating systems, is unable to process incorrect 'EPRT' and 'PORT' FTP request...

VMware vulnerability in NAT networking

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VULNERABILITY SUMMARY A vulnerability has been discovered in vmnat.exe on Windows hosts and vmnet-natd on Linux systems. The vulnerability makes it possible for a malicious guest using a NAT networking configuration to execute unwanted code on the hos...

CVE-2005-4459

Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted 1 EPRT and 2 PORT FTP commands...

CVE-2005-4459

The CVE-2005-4459 issue is a heap-based buffer overflow in VMware’s NAT service components vmnat.exe and vmnet-natd across several products (Workstation 5.5, GSX Server 3.2, ACE 1.0.1, Player 1.0). The flaw is triggered by malformed FTP PORT and EPRT commands processed by the NAT service, allowin...

Detect talkd server port and protocol version

The remote host is running a 'talkd' daemon. talkd is the server that notifies a user that someone else wants to initiate a conversation with him. OpenVAS Vulnerability Test $Id: ntalkdetect.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Detect talkd server port and protocol version Authors...

efriends.txt

AlstraSoft E-Friends Remote command exucetion Site : http://www.alstrasoft.com/efriends.htm Description : AlstraSoft E-Friends is an online social networking software that allows you to start your own site just like Friendster and Tribe.net. The E-Friends software allows members to connect to...