Lucene search
K

9737 matches found

Tenable Nessus
Tenable Nessus
added 2011/09/26 12:0 a.m.46 views

Apache Tomcat 5.5.x < 5.5.34 Multiple Vulnerabilities

According to its self-reported version number, the instance of Apache Tomcat 5.5.x listening on the remote host is prior to 5.5.34. It is, there, affected by multiple vulnerabilities : - Several weaknesses were found in the HTTP Digest authentication implementation. The issues are as follows:...

7.5CVSS6.1AI score0.15226EPSS
Exploits2References9
RedHat Linux
RedHat Linux
added 2011/09/14 6:43 p.m.8 views

Important: Red Hat Security Advisory: jakarta-commons-daemon-jsvc security update

An updated jakarta-commons-daemon-jsvc package that fixes one security issue is now available for JBoss Enterprise Web Server 1.0 for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVS...

5CVSS5.7AI score0.07243EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2011/09/12 7:40 p.m.4 views

kernel: nl80211: missing check for valid SSID size in scan operations

Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAPNETADMIN capability during scan operations with a long SSID value...

7.2CVSS7.2AI score0.00377EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/08/23 2:30 p.m.5 views

kernel: nl80211: missing check for valid SSID size in scan operations

Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAPNETADMIN capability during scan operations with a long SSID value...

7.2CVSS7.2AI score0.00377EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2011/08/23 12:0 a.m.2 views

PT-2011-3911 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39.2 Description: The issue is related to multiple buffer overflows in the Linux kernel, specifically in the net/wireless/nl80211.c file. This can be exploited by local users who have the CAP NET ADMIN...

8.3CVSS7AI score0.03769EPSS
Exploits9References54
Debian CVE
Debian CVE
added 2011/08/15 9:0 p.m.24 views

CVE-2011-2729

native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for...

5CVSS4.3AI score0.07243EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.247 views

CentOS Update for kernel CESA-2009:0001-01 centos2 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2009:0001-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

7.8CVSS1AI score0.04934EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.54 views

CentOS Update for kernel CESA-2009:0001-01 centos2 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.1AI score0.00982EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.33 views

CentOS Update for kernel CESA-2009:1438 centos4 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS5.3AI score0.00938EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2011/06/29 12:2 p.m.105 views

USN-1162-1: Linux kernel vulnerabilities (Marvell Dove)

Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...

9.8CVSS7.1AI score0.04364EPSS
Exploits30
Prion
Prion
added 2011/06/22 10:55 p.m.18 views

Design/Logic Flaw

net/ipv6/netfilter/ip6tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS5.9AI score0.00404EPSS
Exploits2References10Affected Software1
RedHat Linux
RedHat Linux
added 2011/06/21 11:44 p.m.4 views

kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace

net/ipv4/netfilter/iptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.62 views

Ubuntu 10.04 LTS : linux, linux-ec2 vulnerabilities (USN-1141-1)

Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...

9.8CVSS7.1AI score0.04177EPSS
Exploits25References39
OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.17 views

Nmap NSE net: imap-capabilities

Retrieves IMAP email server capabilities. IMAP4rev1 capabilities are defined in RFC 3501. The CAPABILITY command allows a client to ask a server what commands it supports and possibly any site-specific policy. OpenVAS Vulnerability Test $Id: gbnmapimapcapabilitiesnet.nasl 5505 2017-03-07 10:00:18...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.4 views

kernel: ebtables stack infoleak

The doreplace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAPNETADMIN capability ...

2.1CVSS7.1AI score0.00353EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.5 views

kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace

net/ipv6/netfilter/ip6tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.00404EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2011/05/28 12:0 a.m.19 views

Slackware 10.2 / 11.0 : bind 10.2/11.0 recompile (SSA:2009-015-01)

Updated bind packages are available for Slackware 10.2 and 11.0 to address a load problem. It was reported that the initial build of these updates complained that the Linux capability module was not present and would refuse to load. It was determined that the packages which were compiled on 10.2...

5.5AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2011/05/19 11:46 a.m.5 views

kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace

net/ipv4/netfilter/iptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.0041EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2011/05/19 12:0 a.m.7 views

PT-2011-2919 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the IPv6 implementation in the Linux kernel, where the net/ipv6/netfilter/ip6 tables.c file does not properly null-terminate string data in certain structure members...

9CVSS5.6AI score0.03922EPSS
Exploits7References46
Positive Technologies
Positive Technologies
added 2011/05/19 12:0 a.m.8 views

PT-2011-2917 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue allows local users to obtain potentially sensitive information from kernel memory. This is achieved by leveraging the CAP NET ADMIN capability to issue a crafted request, and then...

9CVSS5.7AI score0.03922EPSS
Exploits7References47
Rows per page
Query Builder