RedHat Update for lynx RHSA-2008:0965-01

Check for the Version of lynx OpenVAS Vulnerability Test RedHat Update for lynx RHSA-2008:0965-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

RedHat Update for lynx RHSA-2008:0965-01

Check for the Version of lynx OpenVAS Vulnerability Test RedHat Update for lynx RHSA-2008:0965-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

CentOS Update for lynx CESA-2008:0965 centos3 i386

Check for the Version of lynx OpenVAS Vulnerability Test CentOS Update for lynx CESA-2008:0965 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CentOS Update for lynx CESA-2008:0965 centos3 x86_64

Check for the Version of lynx OpenVAS Vulnerability Test CentOS Update for lynx CESA-2008:0965 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS Update for lynx CESA-2008:0965-01 centos2 i386

Check for the Version of lynx OpenVAS Vulnerability Test CentOS Update for lynx CESA-2008:0965-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

CentOS Update for lynx CESA-2008:0965 centos3 i386

Check for the Version of lynx OpenVAS Vulnerability Test CentOS Update for lynx CESA-2008:0965 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CentOS Update for lynx CESA-2008:0965 centos4 i386

Check for the Version of lynx OpenVAS Vulnerability Test CentOS Update for lynx CESA-2008:0965 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CVE-2008-6235

The Netrw plugin netrw.vim in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a filename used by the 1 "D" delete command or 2 b:netrwcurdir variable, as demonstrated using the netrw.v4 and netrw.v5 test cases...

CVE-2008-6235

CVE-2008-6235 affects Vim 7.0/7.1 through the netrw.vim plugin, which allows command execution via shell metacharacters in filenames used by the D (delete) command or b:netrw_curdir. Exploitation could lead to arbitrary code execution. Public fixes exist (e.g., advisories RHSA-2008:0580 and OpenS...

Sql injection

SQL injection vulnerability in index.php in Five Dollar Scripts Drinks script allows remote attackers to execute arbitrary SQL commands via the recid parameter...

PyCrypto ARC2模块缓冲区溢出漏洞

BUGTRAQ ID: 33674 CVECAN ID: CVE-2009-0544 PyCrypto是使用Python编写的加密工具包。 PyCrypto的ARC2模块中存在缓冲区溢出漏洞，如果远程攻击者在发送的请求中包含有超长的ARC2密钥长度的话，就可以触发这个溢出，导致拒绝服务或执行任意指令。 Dwayne C. Litzenberger PyCrypto 2.0.x 厂商补丁： Dwayne C. Litzenberger ---------------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

AWStats migrate Remote Command Execution

This module exploits an arbitrary command execution vulnerability in the AWStats CGI script. AWStats v6.4 and v6.5 are vulnerable. Perl based payloads are recommended with this module. The vulnerability is only present when AllowToUpdateStatsFromBrowser is enabled in the AWStats configuration fil...

CA20090107-01: CA Service Metric Analysis and CA Service Level Management smmsnmpd Arbitrary Command Execution Vulnerability

Title: CA20090107-01: CA Service Metric Analysis and CA Service Level Management smmsnmpd Arbitrary Command Execution Vulnerability CA Advisory Reference: CA20090107-01 CA Advisory Date: 2009-01-07 Reported By: Michel Arboi of Tenable Network Security Impact: A remote attacker can execute arbitra...

TCL Shell (tclsh) Arbitrary Command Execution

A TCL shell tclsh is running on this port, and it allows unauthenticated users to run arbitrary commands on the machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid35308; scriptversion"1.14";...

RedHat Security Advisory RHSA-2009:0019

The remote host is missing updates announced in advisory RHSA-2009:0019. Hanterm is a replacement for xterm, a X Window System terminal emulator, that supports Hangul input and output. A flaw was found in the Hanterm handling of Device Control Request Status String DECRQSS escape sequences. An...

FreeBSD Ports: xterm

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Apple iTunes/QuickTime畸形'.mov'文件缓冲区溢出漏洞

BUGTRAQ ID: 32540 CNCAN ID：CNCAN-2008120301 Apple iTunes/QuickTime是苹果公司开发的媒体播放程序。 Apple iTunes/QuickTime处理.mov文件存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建恶意的'.mov'文件，诱使用户访问，可导致以应用程序权限执行任意指令。 Apple QuickTime Player 7.5.5 + Apple Mac OS X 10.4.9 + Apple Mac OS X 10.3.9 + Apple Mac OS X 10.5 + Apple Mac O...

Fedora 9 : lynx-2.8.6-17.fc9 (2008-9550)

Mon Nov 10 2008 Jiri Moskovcak 2.8.6-17 - Fixed CVE-2008-4690 lynx: remote arbitrary command execution. via a crafted lynxcgi: URL thoger - Fri May 30 2008 Jiri Moskovcak 2.8.6-16 - updated to latest stable upstream version 2.8.6rel5 - Fri May 23 2008 Dennis Gilmore - 2.8.6-15.1 - minor rebuild...

Fedora 8 : lynx-2.8.6-12.fc8 (2008-9597)

Mon Nov 10 2008 Jiri Moskovcak - 2.8.6-12 - Fixed CVE-2008-4690 lynx: remote arbitrary command execution. via a crafted lynxcgi: URL thoger - Fri May 30 2008 Jiri Moskovcak - 2.8.6-11 - updated to latest upstream version 2.8.6rel5 - Resolves: 214205 - Wed Jan 9 2008 Jiri Moskovcak - 2.8.6-10 -...

verlihub -- insecure temporary file usage and arbitrary command execution

securityfocus reports: An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application. Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files,...