35 matches found
OPENSUSE-SU-2020:1647-1 Security update for kdeconnect-kde
This update for kdeconnect-kde fixes the following issues: kdeconnect-kde was updated to fix various security issues in its default enabled network service CVE-2020-26164, boo1176268: This update was imported from the openSUSE:Leap:15.1:Update update project...
CVE-2020-1805
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156C00E156R2P4 has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes out of bound read. Successful exploit may cause information...
SUSE-SU-2019:1523-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2019-11472: Fixed a denial-of-service in ReadXWDImage bsc1133204. - CVE-2019-11470: Fixed a denial-of-service in ReadCINImage bsc1133205. - CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABIma...
SUSE-SU-2019:0931-1 Security update for openldap2
This update for openldap2 fixes the following issues: Security issues fixed: - CVE-2017-9287: A double free vulnerability in the mdb backend during search with page size 0 was fixed bsc1041764. - CVE-2017-17740: Fixed a denial of service slapd crash via a member MODDN operation that could have be...
The vulnerability of the Outside In Filters component of the software development kit (SDK) provided by Outside In Technology allows a perpetrator to gain unauthorized access to protected data or cause service failures.
The vulnerability of the Outside In Filters component within the software development kit SDK of Outside In Technology is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected data or cause service failures...
Citrix Licensing service is not running or properly installed on the License server
The Citrix Licensing service is not running, properly installed, registered on the machine, or the service permissions are not set correctly. The System Event Log may have traces of service-related issues...
Unspecified vulnerability in Oracle Siebel CRM (CNVD-2017-33938)
Oracle Siebel CRM is a customer relationship management solution from Oracle. A security vulnerability exists in the Siebel Business Service Issues component of Siebel CRM Desktop for Oracle Siebel CRM, which can be exploited by attackers to compromise system confidentiality...
The vulnerability of the Flash Player software platform, which allows a perpetrator to execute arbitrary code or cause service failures
The vulnerability of the Flash Player software may allow a malicious actor to execute arbitrary code or cause service failures...
Magic Winmail Server 4.0 (Build 1112) - upload.php Traversal Arbitrary File Upload
Magic Winmail Server 4.0 Build 1112 - upload.php Traversal Arbitrary File Upload source: https://www.securityfocus.com/bid/12388/info Magic Winmail Server is reportedly affected by multiple vulnerabilities. There are two distinct directory traversal vulnerabilities in the Webmail interface allowi...
FreeBSD : krb5 -- ASN.1 decoder denial-of-service vulnerability (86)
The following package needs to be updated: krb5 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgbd60922bfb8d11d8a13e000a95bc6fae.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-200...
Sophos Anti-Virus Detection and Status
Sophos Anti-Virus, a commercial antivirus software package for Windows, is installed on the remote host. However, there is a problem with the installation; either its services are not running or its engine and/or virus definitions are out of date. C Tenable Network Security, Inc...
OpenSSL security update
Upgraded OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix two potential denial-of-service issues in earlier versions of OpenSSL. We recommend sites that use OpenSSL upgrade to the fixed packages right away. More details about this issue may be found in the Commo...
Проблемы со службой RunAs в Windows 2000 (privelege escalation)
Атакующий может подменить именованый канал службы чтобы перехватить логин и пароль пользователя. Кроме того, после выполнения приложения не производится очистка буфера памяти, что позволяет получить доступ к конфеденциальным данным. Имеется возможность DoS...
CVE-2001-0080
Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error...
Проблемы со службой обзора (Browser)
Служба обзора сети базируется на UDP и не поддерживает авторизации. В спецификации службы есть описания пакетов, кторые служат для остановки службы обзора. Таким образом можно остановить все обозреватели сети. Кроме того, можно вызвать перегрузку сети зарегестрировав чрезвычайно большой список...