Ubuntu 14.04 LTS : Graphviz vulnerability (USN-2435-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2435-1 advisory. It was discovered that graphviz incorrectly handled parsing errors. An attacker could use this issue to cause graphviz to crash or possibly execute arbitrary code...

[BSA-092] Security Update for pidgin

intrigeri uploaded new packages for pidgin which fixed the following security problems: CVE-2013-6477 Jaime Breva Ribes discovered that a remote XMPP user can trigger a crash by sending a message with a timestamp in the distant future. CVE-2013-6478 Pidgin could be crashed through overly wide...

Scientific Linux Security Update : sudo on SL5.x i386/x86_64 (20130930)

A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's...

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2012-34 Miscellaneous memory safety hazards rv:13.0/ rv:10.0.5 MFSA 2012-36 Content Security Policy inline-script bypass MFSA 2012-37 Information disclosure though Windows file shares and shortcut files MFSA 2012-38 Use-after-free while replacing/inserting a node...

Adobe Shockwave Player Multiple Vulnerabilities (MAC OS X) - Nov 2011

This host is installed with Adobe Shockwave Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeshockwaveplayermultvulnnov11macosx.nasl 5424 2017-02-25 16:52:36Z teissa $ Adobe Shockwave Player Multiple Vulnerabilities MAC OS X- Nov 2011 Authors: Madhuri D...

Fedora 13 : viewvc-1.1.11-1.fc13 (2011-7198)

security fix: remove user-reachable override of cvsdb row limit - fix broken standalone.py -c and -d options handling - add --help option to standalone.py - fix stack trace when asked to checkout a directory issue 478 - improve memory usage and speed of revision log markup issue 477 - fix broken...

Fedora 15 : viewvc-1.1.11-1.fc15 (2011-7185)

security fix: remove user-reachable override of cvsdb row limit - fix broken standalone.py -c and -d options handling - add --help option to standalone.py - fix stack trace when asked to checkout a directory issue 478 - improve memory usage and speed of revision log markup issue 477 - fix broken...

Fedora 14 : viewvc-1.1.11-1.fc14 (2011-7222)

security fix: remove user-reachable override of cvsdb row limit - fix broken standalone.py -c and -d options handling - add --help option to standalone.py - fix stack trace when asked to checkout a directory issue 478 - improve memory usage and speed of revision log markup issue 477 - fix broken...

Mandriva Update for openssl MDVSA-2011:028 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDVSA-2011:028 openssl Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Vulnerabilities in Windows Media Player Could Allow Remote Code Execution (936782)

This host is missing a critical security update according to Microsoft Bulletin MS07-047. OpenVAS Vulnerability Test $Id: gbms07-047.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerabilities in Windows Media Player Could Allow Remote Code Execution 936782 Authors: Madhuri D Copyright: Copyright c 2011...

GLSA-200906-05 : Wireshark: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200906-05 Wireshark: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Wireshark: David Maciejak discovered a vulnerability in packet-usb.c in the USB dissector via a malformed USB Request Block URB...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus SAV before 10.1 MR8, Symantec Endpoint Protection SEP 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject...

CVE-2009-1428

Multiple cross-site scripting XSS vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus SAV before 10.1 MR8, Symantec Endpoint Protection SEP 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject...

CVE-2009-1428

Multiple cross-site scripting XSS vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus SAV before 10.1 MR8, Symantec Endpoint Protection SEP 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject...

Symantec Log Viewer JavaScript Injection Vulnerabilities

SUMMARY The Log Viewer feature in some Symantec products contains two parsing errors which could be exploited through Java script injection. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Norton 360 | 1.0 | Run LiveUpdate in Interactive Mode Norton Internet Security | 2005 through 200...

Mandriva Linux Security Advisory : poppler (MDVSA-2009:068-1)

A crafted PDF file that triggers a parsing error allows remote attackers to cause definal of service. This bug is consequence of a wrong processing on FormWidgetChoice::loadDefaults method CVE-2009-0755. A crafted PDF file that triggers a parsing error allows remote attackers to cause definal of...

Mandrake Security Advisory MDVSA-2009:068-1 (poppler)

The remote host is missing an update to poppler announced via advisory MDVSA-2009:068-1. OpenVAS Vulnerability Test $Id: mdksa20090681.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:068-1 poppler Authors: Thomas Reinke Copyright: Copyright c 2009...

Mozilla Thunderbird < 2.0.0.19 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 2.0.0.19. Such versions are potentially affected by the following security issues : - There are several stability bugs in the browser engine that could lead to crashes with evidence of memory corruption. MFSA 2008-60 - XBL bindings can be used ...

Fedora 8 : perl-5.8.8-31.fc8 (2007-3218)

Resolves: CVE-2007-5116: perl regular expression UTF parsing errors Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 7 : perl-5.8.8-26.fc7 (2007-3255)

Resolves CVE-2007-5116: perl regular expression UTF parsing errors Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...