7253 matches found
PVFB SDL backend chokes on bogus screen updates
Buffer overflow in the backend framebuffer of XenSource Xen Para-Virtualized Framebuffer PVFB Message 3.0 through 3.0.3 allows local users to cause a denial of service SDL crash and possibly execute arbitrary code via "bogus screen updates," related to missing validation of the "format of message...
Moderate: Red Hat Security Advisory: gnome-screensaver security update
An updated gnome-screensaver package that fixes a security flaw is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. gnome-screensaver is the GNOME project's official screen saver program. A flaw was...
gnome-screensaver security update
2.16.1-5.1 Resolves: 436521 - don't unlock the screen when pwent lookup fails...
[SECURITY] Fedora 7 Update: gnome-screensaver-2.18.2-3.fc7
gnome-screensaver is a screen saver and locker that aims to have simple, sane, secure defaults and be well integrated with the desktop...
CVE-2008-1356
Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System JDS, when using the GNOME On-Screen Keyboard GOK, allows local users to bypass authentication via unknown vectors that cause the screen saver to crash...
CVE-2008-1356
Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System JDS, when using the GNOME On-Screen Keyboard GOK, allows local users to bypass authentication via unknown vectors that cause the screen saver to crash...
Applets or Applications are allowed to display an oversized window
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
[SECURITY] Fedora 7 Update: ghostscript-8.15.4-4.fc7
Ghostscript is a set of software that provides a PostScriptTM interpreter, a set of C procedures the Ghostscript library, which implements the graphics capabilities in the PostScript language and an interpreter for Portable Document Format PDF files. Ghostscript translates PostScript code into ma...
Debian Security Advisory DSA 1202-1 (screen)
The remote host is missing an update to screen announced via advisory DSA 1202-1. cstone and Rich Felker discovered that specially crafted UTF-8 sequences may lead an out of bands memory write when displayed inside the screen terminal multiplexer, allowing denial of service and potentially the...
Debian Security Advisory DSA 408-1 (screen)
The remote host is missing an update to screen announced via advisory DSA 408-1. OpenVAS Vulnerability Test $Id: deb4081.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 408-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian: Security Advisory (DSA-1202-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-408)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Three keystrokes you can make the Windows blue-screen-vulnerability warning-the black bar safety net
Source: West information An interesting try: press and hold the right Ctrl at the same time, then press Scroll Lock twice, Windows will blue screen appears, showing: STOP:0x000000E2 0x00000000,0x00000000,0x00000000,0x00000000。 This is not a Bug, it's just a Windows A functionality, Yes, is to get...
Bitweaver XSS & SQL Injection Vulnerability
HSC Bitweaver XSS & SQL Injection Vulnerability Bitweaver is an open source content management system. Its speed and power are ideal for large-scale community websites and corporate applications, but it is simple enough for non-technical small site users to set up and administrate. It comes fully...
SuSE 10 Security Update : screen (ZYPP Patch Number 2199)
A special formed UTF-8 sequence in text could be used to crash the terminal multitasker screen by overwriting memory in the heap. This is potentially exploitable to execute code. CVE-2006-4573 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, In...
runcms-overwrite.txt
RunCmss Bug Yahoo! Crawler body font-size: 10px; font-family: verdana; INPUT BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 10px; BORDER-LEFT-COLOR: D50428; BACKGROUND: 590009; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: D50428; COLOR: 00ff00; BORDER-TOP-COLOR:...
Applets or Applications are allowed to display an oversized window
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
CVE-2007-4693
The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fields."...
Authentication flaw
The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fields."...
CVE-2007-4693
The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fields."...