10 matches found
openSUSE Security Update : bytefx-data-mysql (openSUSE-SU-2010:0342-1)
Mono's ASP.NET implementation did not set the 'EnableViewStateMac' property by default. Attackers could exploit that to conduct cross-site-scripting XSS attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...
openSUSE Security Update : bytefx-data-mysql (openSUSE-SU-2010:0342-1)
Mono's ASP.NET implementation did not set the 'EnableViewStateMac' property by default. Attackers could exploit that to conduct cross-site-scripting XSS attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...
openSUSE Security Update : bytefx-data-mysql (openSUSE-SU-2010:0342-1)
Mono's ASP.NET implementation did not set the 'EnableViewStateMac' property by default. Attackers could exploit that to conduct cross-site-scripting XSS attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...
openSUSE 10 Security Update : bytefx-data-mysql (bytefx-data-mysql-6365)
The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documents. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : bytefx-data-mysql (bytefx-data-mysql-1124)
The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documents. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : bytefx-data-mysql (bytefx-data-mysql-1124)
The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documents. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : bytefx-data-mysql (bytefx-data-mysql-173)
This patch fixes two security problems and one critical bug : Makes sure that values of all the tags which can be exploited are encoded to make sure no exploit is possible. CVE-2008-3422 A header injection problem in Sys.Web was fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
openSUSE 10 Security Update : bytefx-data-mysql (bytefx-data-mysql-5558)
This patch fixes two security problems and one critical bug : Makes sure that values of all the tags which can be exploited are encoded to make sure no exploit is possible. CVE-2008-3422 A header injection problem in Sys.Web was fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
openSUSE 10 Security Update : bytefx-data-mysql (bytefx-data-mysql-4597)
This update fixes a buffer overflow in Mono's BigInteger implementation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update bytefx-data-mysql-4597. The text description of this plugin is C SUSE...
Fedora Core 5 : mono-1.1.13.7-2.fc5.1 (2006-1012)
CVE-2006-5072 Mono insecure temporary file usage Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...