Fedora Update for gtkmozembedmm FEDORA-2008-2682

Check for the Version of gtkmozembedmm OpenVAS Vulnerability Test Fedora Update for gtkmozembedmm FEDORA-2008-2682 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Fedora Update for gtkmozembedmm FEDORA-2008-2662

Check for the Version of gtkmozembedmm OpenVAS Vulnerability Test Fedora Update for gtkmozembedmm FEDORA-2008-2662 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Net-snmp TCP Wrapper远程信息泄露漏洞

BUGTRAQ ID: 33755 CVECAN ID: CVE-2008-6123 Net-SNMP是一个免费的、开放源码的SNMP实现，以前称为UCD-SNMP。 在使用TCP wrapper授权客户端的时候，Net-SNMP的snmplib/snmpUDPDomain.c文件中的netsnmpudpfmtaddr函数没有正确地解析hosts.allow规则，这允许远程攻击者绕过预期的访问限制执行SNMP查询，获得主机相关的敏感信息。 0 Net-SNMP 5.4.2.1 厂商补丁： Net-SNMP -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载...

[SECURITY] Fedora 9 Update: gtkmozembedmm-1.4.2.cvs20060817-25.fc9

This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...

DEBIAN-CVE-2009-0318

Untrusted search path vulnerability in the GObject Python interpreter wrapper in Gnumeric allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...

Design/Logic Flaw

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

CVE-2009-0180 corresponds to build-time omission of TCP wrappers support in nfs-utils for certain Fedora releases (Fedora 9 before 1.1.2-9.fc9 and Fedora 10 before 1.1.4-6.fc10). This could allow remote attackers to bypass access restrictions due to missing host-based protection. Connected adviso...

Fedora 10 : nfs-utils-1.1.4-6.fc10 (2009-0266)

Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. gssd: By default, don't spam syslog when users' credentials expire Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenabl...

[SECURITY] Fedora 9 Update: gtkmozembedmm-1.4.2.cvs20060817-24.fc9

This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...

MailScanner Multiple Insecure Temporary Files Vulnerabilities

MailScanner is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Code injection

dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...

CVE-2008-4951

dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...

CVE-2008-4951

CVE-2008-4951 affects dtc 0.29.6, enabling local users to overwrite arbitrary files through a symlink attack on /tmp/awstats.log, /tmp/spam.log.#####, and /tmp/spam_err.log, related to the accesslog.php and sa-wrapper scripts. The cited sources (NVD, SUSE, Ubuntu, CVE records) confirm the local a...

CVE-2008-4951

dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...

[SECURITY] Fedora 8 Update: gtkmozembedmm-1.4.2.cvs20060817-23.fc8

This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...

[SECURITY] Fedora 9 Update: gtkmozembedmm-1.4.2.cvs20060817-21.fc9

This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...

Mozilla privilege escalation via XPCnativeWrapper pollution

The XPConnect component in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to "pollute XPCNativeWrappers" and execute arbitrary code with chrome privileges via vectors related to 1 chrome XBL and 2 chrome JS...