VideoCache 1.9.2 vccleaner root vulnerability

No description provided by source. ==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges of the Squid proxy...

VideoCache 1.9.2 - vccleaner Local Privilege Escalation

VideoCache 1.9.2 - vccleaner Local Privilege Escalation ==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges...

VideoCache 1.9.2 vccleaner root vulnerability

==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges of the Squid proxy server to append semi-arbitrary data...

FreeBSD直接管道写操作本地信息泄露漏洞

BUGTRAQ ID: 35279 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD和其他UNIX类系统上最常见的进程间通讯方式之一是匿名管道。这种机制会创建一对文件描述符，可以从一个描述符读取写入到另一个描述符的数据。 FreeBSD的管道实现中包含名为“直接写入”的优化。在这种优化中，FreeBSD内核利用虚拟内存映射允许直接在进程之间拷贝数据，而不是在调用...

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS : linux, linux-source-2.6.15/22 vulnerabilities (USN-659-1)

It was discovered that the direct-IO subsystem did not correctly validate certain structures. A local attacker could exploit this to cause a system crash, leading to a denial of service. CVE-2007-6716 It was discovered that the disabling of the ZEROPAGE optimization could lead to large memory...

Mandriva Update for tripwire MDKA-2007:011 (tripwire)

Check for the Version of tripwire OpenVAS Vulnerability Test Mandriva Update for tripwire MDKA-2007:011 tripwire Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Be careful what you search for

While search engine optimization SEO is becoming one of the must do’s for companies that are trying to improve theirsite ranking in search engines like Google and Yahoo, it’s also increasingly becoming a trick of the trade for spammers and malware authors looking to drive traffic to their own...

Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1

Ubuntu Update for Linux kernel vulnerabilities USN-659-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...

Linux/sparc - Portbind 8975/tcp - 284 bytes

No description provided by source. / 0-day portbind shellcode for all those Sun machines running linux.. Coded from scratch, so i take all the credits. It simply binds a pretty shell in port 8975/tcp enjoy. no nulls, no fork, no shit, couldn't be more optimized. enjoy!. Arch : Sparc OS : Linux Ta...

Fedora 8 : imlib2-1.4.2-2.fc8 (2008-10296)

Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...

Fedora 9 : imlib2-1.4.2-2.fc9 (2008-10287)

Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...

Fedora 8 : optipng-0.6.2-1.fc8 (2008-9639)

The main reason for this update is a buffer overflow that is removed in this version, that could be triggered by processing specially crafted bitmap images .bmp. Aggregated upstream changelog: ============================== ++ Put back a speed optimization, accidentally removed in version 0.6,...

kernel: Reinstate ZERO_PAGE optimization in 'get_user_pages()' and fix XIP

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service memory consumption via a large number of calls to the getuserpages function, which lacks a ZEROPAGE optimization and results in allocation of "useless newly zeroed pages."...

CVE-2008-4438

CVE-2008-4438 affects Datafeed Studio 1.6.2, where a Cross-Site Scripting (XSS) flaw exists in search.php due to the q parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. The CVSS2 base score is 4.3 (Medium) with network attack vector, requiring no authent...

kernel: Reinstate ZERO_PAGE optimization in 'get_user_pages()' and fix XIP

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service memory consumption via a large number of calls to the getuserpages function, which lacks a ZEROPAGE optimization and results in allocation of "useless newly zeroed pages."...

PT-2008-3853 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.24 and 2.6.25 through 2.6.25.8 Description: The issue allows local users to cause a denial of service, resulting in memory consumption. This is achieved through a large number of calls to the get user pages function,...

[SECURITY] Fedora 8 Update: lighttpd-1.4.19-4.fc8

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...

CVE-2008-1306

This CVE (CVE-2008-1306) concerns multiple XSS vulnerabilities in Savvy Content Manager CM. The issues allow remote attackers to inject arbitrary web script or HTML via the searchterms parameter to three pages: searchresults.cfm, search_results.cfm, and search_results/index.cfm. The NVD entry lis...

Security fix for the ALT Linux 8 package apache2 version 2.2.8-alt1

Feb. 29, 2008 Aleksey Avdeev 2.2.8-alt1 - 2.2.8: security fixes CVE-2007-6421, CVE-2007-6421, CVE-2007-6422, CVE-2007-6388, CVE-2007-5000, CVE-2008-0005 - Fix 14601: less-than-optimal examples in conf/sites-available. Thanks Mikhail Gusarov &LTdottedmag altlinux org...

postgresql DoS via infinite loop in regex NFA optimization code

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service infinite loop via a crafted regular expression...