22 matches found
openSUSE Security Update : kvm (openSUSE-SU-2012:0832-1)
fix vulnerability to temporary file symlink attacks in snapshot file mode. bnc764526 CVE-2012-2652 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-364. The text description of...
Cisco Clean Access可猜测快照文件漏洞
Cisco Clean Access CCA是一款用于自动检测、隔离、清除受恶意代码感染的设备访问网络解决方案。 Cisco Clean Access处理快照文件名存在问题,远程攻击者可以利用漏洞下载数据库文件获得敏感信息。 Cisco Clean Access手工备份的数据库快照存在文件名可猜测并下载影响,攻击者可能无需认证下载到备份数据库,而此数据库文件没有加密及其他保护。此漏洞的Cisco Bug ID为CSCsd48626,影响如下的CCA版本: CCA releases 3.5.x - 3.5.9 CCA releases 3.6.x - 3.6.1.1 Cisco Clean...