Lucene search
K

1901 matches found

Ubuntu
Ubuntu
added 2008/03/05 8:47 p.m.50 views

USN-584-1: OpenLDAP vulnerabilities

Jonathan Clarke discovered that the OpenLDAP slapd server did not properly handle modify requests when using the Berkeley DB backend and specifying the NOOP control. An authenticated user with modify permissions could send a crafted modify request and cause a denial of service via application...

4CVSS5.3AI score0.03053EPSS
Exploits4
Fedora
Fedora
added 2008/02/26 12:23 a.m.39 views

[SECURITY] Fedora 8 Update: cups-1.3.6-2.fc8

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

10CVSS4.2AI score0.0702EPSS
Exploits1
Cent OS
Cent OS
added 2008/02/22 1:54 p.m.63 views

compat, openldap security update

CentOS Errata and Security Advisory CESA-2008:0110 Updated openldap packages that fix security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of...

4CVSS5.8AI score0.03053EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2008/02/21 9:15 p.m.34 views

Moderate: Red Hat Security Advisory: openldap security update

Updated openldap packages that fix security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of Lightweight Directory Access Protocol LDAP applicatio...

4CVSS5.7AI score0.03053EPSS
Exploits4References3
RedHat Linux
RedHat Linux
added 2008/02/21 9:15 p.m.4 views

openldap: slapd crash on NOOP control operation on entry in bdb storage

The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service crash via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability...

4CVSS5.8AI score0.02044EPSS
Exploits3References4
ATTACKERKB
ATTACKERKB
added 2008/02/01 10:0 p.m.4 views

CVE-2007-6698

The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service crash via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability...

4CVSS5.5AI score0.02044EPSS
Exploits3References26
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.28 views

Debian Security Advisory DSA 196-1 (bind)

The remote host is missing an update to bind announced via advisory DSA 196-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS7AI score0.12322EPSS
Exploits0References1
xssed
xssed
added 2007/11/12 12:0 a.m.21 views

Unfixed XSS vulnerability at www.ocf.berkeley.edu

Security researcher SeeD, has submitted on 11/12/2007 a cross-site-scripting XSS vulnerability affecting www.ocf.berkeley.edu, which at the time of submission ranked 1751 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/12/2007. It is current...

6.6AI score
Exploits0References1
Fedora
Fedora
added 2007/11/01 9:14 p.m.45 views

[SECURITY] Fedora 7 Update: cups-1.2.12-6.fc7

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

10CVSS4.2AI score0.08565EPSS
Exploits1
myhack58
myhack58
added 2007/08/28 12:0 a.m.143 views

Sniffit sniff of installation and use description(linux)-bug warning-the black bar safety net

Sniffit is by the Lawrence Berkeley Laboratory developed, can be in Linux, Solaris, SGI, etc. a variety of platforms running the network Network monitoring software, it is mainly for the TCP/IP Protocol insecurity for running the Protocol of the machine is listening-and, of course, the packet mus...

Exploits0
Fedora
Fedora
added 2007/08/13 9:45 p.m.43 views

[SECURITY] Fedora Core 6 Update: cups-1.2.12-4.fc6

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

6.8CVSS4.1AI score0.08565EPSS
Exploits0
securityvulns
securityvulns
added 2007/07/28 12:0 a.m.93 views

Solaris finger bug

Hi all: Recently, we monitored a cracker from Eastern Europe, who ran 'finger 9@host' against a Solaris 7 box, and got the following result: Login Name TTY Idle When Where daemon ??? . . . . bin ??? pts/1 Oct 2, 2002 xxx.lbl.gov sys ??? . . . . account1 ??? pts/8 Jul 20, 2000 yyy.lbl.gov account2...

2.1CVSS5.8AI score0.00764EPSS
Exploits0
Fedora
Fedora
added 2007/07/25 5:15 a.m.26 views

[SECURITY] Fedora 7 Update: bind-9.4.1-7.P1.fc7

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

7.1CVSS1.4AI score0.1309EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2007/07/24 1:56 p.m.28 views

Moderate: Red Hat Security Advisory: bind security update

Updated bind packages that fix a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ISC BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. A flaw was found in the way...

4.3CVSS6.6AI score0.1309EPSS
Exploits0References2
Debian
Debian
added 2006/09/09 6:34 a.m.24 views

[SECURITY] [DSA 1172-1] New bind9 packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1172-1 [email protected] http://www.debian.org/security/ Martin Schulze September 9th, 2006 http://www.debian.org/security/faq -...

7.5CVSS6.6AI score0.12551EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2006/05/23 7:31 p.m.5 views

security flaw

The cryptgensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in cryptblowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number o...

1.2CVSS5.8AI score0.00384EPSS
Exploits0References4
OSV
OSV
added 2006/03/30 11:2 a.m.4 views

DEBIAN-CVE-2006-1539

Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...

7.5CVSS7.2AI score0.02039EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/10/05 12:0 a.m.16 views

GLSA-200510-02 : Berkeley MPEG Tools: Multiple insecure temporary files

The remote host is affected by the vulnerability described in GLSA-200510-02 Berkeley MPEG Tools: Multiple insecure temporary files Mike Frysinger of the Gentoo Security Team discovered that mpegencode and the conversion utilities were creating temporary files with predictable or fixed filenames...

2.1CVSS5.6AI score0.00333EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2005/10/03 12:0 a.m.44 views

Berkeley MPEG Tools: Multiple insecure temporary files

Background The Berkeley MPEG Tools are a collection of utilities for manipulating MPEG video technology, including an encoder mpegencode and various conversion utilities. Description Mike Frysinger of the Gentoo Security Team discovered that mpegencode and the conversion utilities were creating...

2.1CVSS6.2AI score0.00333EPSS
Exploits0
securityvulns
securityvulns
added 2005/10/03 12:0 a.m.33 views

[Full-disclosure] [ GLSA 200510-02 ] Berkeley MPEG Tools: Multiple insecure temporary files

Gentoo Linux Security Advisory GLSA 200510-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

2.1CVSS6.3AI score0.00333EPSS
Exploits0
Rows per page
Query Builder