CVE-2009-1731

The provided documents contain concrete details for CVE-2009-1731: MLFFAT 2.1 is affected, specifically the panel/index.php component. The vulnerability is an SQL injection caused by processing a base64-encoded supervisor cookie, enabling remote attackers to execute arbitrary SQL commands. Impact...

openSUSE 10 Security Update : glib2 (glib2-6209)

Large strings could lead to a heap overflow in the base64 encoding and decoding functions. Attackers could potentially exploit that to execute arbitrary code CVE-2008-4316. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Ubuntu 6.06 LTS / 7.10 : libsoup vulnerability (USN-737-1)

It was discovered that the Base64 encoding functions in libsoup did not properly handle large strings. If a user were tricked into connecting to a malicious server, an attacker could possibly execute arbitrary code with user privileges. Note that Tenable Network Security has extracted the precedi...

Mandriva Linux Security Advisory : glib2.0 (MDVSA-2009:080)

Multiple integer overflows in GLib's Base64 encoding and decoding functions enable attackers possibly remote ones, depending on the applications glib2 is linked against with - mostly GNOME ones either to cause denial of service and to execute arbitrary code via an untrusted input CVE-2008-4316...

Mandriva Linux Security Advisory : libsoup (MDVSA-2009:081)

An integer overflow in libsoup Base64 encoding and decoding functions enables attackers either to cause denial of service and to execute arbitrary code CVE-2009-0585. This update provides the fix for that security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

Mandrake Security Advisory MDVSA-2009:081 (libsoup)

The remote host is missing an update to libsoup announced via advisory MDVSA-2009:081. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:080 (glib2.0)

The remote host is missing an update to glib2.0 announced via advisory MDVSA-2009:080. OpenVAS Vulnerability Test $Id: mdksa2009080.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:080 glib2.0 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:080 (glib2.0)

The remote host is missing an update to glib2.0 announced via advisory MDVSA-2009:080. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:081 (libsoup)

The remote host is missing an update to libsoup announced via advisory MDVSA-2009:081. OpenVAS Vulnerability Test $Id: mdksa2009081.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:081 libsoup Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:085 (gstreamer0.10-plugins-base)

The remote host is missing an update to gstreamer0.10-plugins-base announced via advisory MDVSA-2009:085. OpenVAS Vulnerability Test $Id: mdksa2009085.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:085 gstreamer0.10-plugins-base Authors: Thomas Rein...

Mandrake Security Advisory MDVSA-2009:078 (evolution-data-server)

The remote host is missing an update to evolution-data-server announced via advisory MDVSA-2009:078. OpenVAS Vulnerability Test $Id: mdksa2009078.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:078 evolution-data-server Authors: Thomas Reinke...

Debian: Security Advisory (DSA-1747-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-1748-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PhotoStand 1.2.0 - Remote Command Execution

!/usr/bin/perl App : PhotoStand 1.2.0 Site : http://www.photostand.org Remote Command Execution Exploit Credits to : Giovanni Buzzin, "Osirys" osirysatautisticidotorg Greets: drosophila, emgent, Fireshot PhotoStand is a used Image Gallery CMS. PhotoStand is vulnerable to SQL Injection, AUTH BYPAS...

RHEL 5 : glib2 (RHSA-2009:0336)

Updated glib2 packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOM...

RedHat Security Advisory RHSA-2009:0358

The remote host is missing updates announced in advisory RHSA-2009:0358. Evolution is the integrated collection of e-mail, calendaring, contact management, communications, and personal information management PIM tools for the GNOME desktop environment. It was discovered that evolution did not...

Ubuntu USN-737-1 (libsoup)

The remote host is missing an update to libsoup announced via advisory USN-737-1. OpenVAS Vulnerability Test $Id: ubuntu7371.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7371.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-737-1 libsoup Authors: Thomas...

DSA-1747-1 glib2.0 - arbitrary code execution

Bulletin has no description...

DSA-1748-1 libsoup - arbitrary code execution

Bulletin has no description...

RedHat Security Advisory RHSA-2009:0358

The remote host is missing updates announced in advisory RHSA-2009:0358. Evolution is the integrated collection of e-mail, calendaring, contact management, communications, and personal information management PIM tools for the GNOME desktop environment. It was discovered that evolution did not...