Ubuntu 12.10 : rpm vulnerability (USN-1694-1)

It was discovered that RPM incorrectly handled signature checking. An attacker could create a specially crafted rpm with an invalid signature which could pass the signature validation check. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

USN-1694-1: RPM vulnerability

It was discovered that RPM incorrectly handled signature checking. An attacker could create a specially-crafted rpm with an invalid signature which could pass the signature validation check...

Design/Logic Flaw

The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by causing a failure of a single checking service...

CVE-2012-6461

The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by causing a failure of a single checking service...

Apple QuickTime rnet Box Parsing Heap Buffer Overflow (CVE-2012-3756)

A heap buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to a bounds-checking error while parsing QuickTime reference movie files. A remote attacker can exploit this vulnerability by enticing the target user to open a specially crafted QuickTime movie fi...

[SAMHAIN 3.0.9] File Integrity Checker / Host-Based Intrusion Detection System

The Samhain host-based intrusion detection system HIDS provides file integrity checking and log file monitoring/analysis , as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes. Samhain been designed to monitor multiple hosts with potentially...

Apple QuickTime TeXML Style Element Buffer Overflow

Added: 12/24/2012 CVE: CVE-2012-3752 BID: 56557 OSVDB: 87087 Background QuickTime is a media player for Windows and Mac OS platforms. Problem Apple QuickTime 7.7.2 and earlier is vulnerable to remote code execution due to a failure to perform appropriate boundary checking. A remote attacker who...

Apple QuickTime TeXML Style Element Buffer Overflow

Added: 12/24/2012 CVE: CVE-2012-3752 BID: 56557 OSVDB: 87087 Background QuickTime is a media player for Windows and Mac OS platforms. Problem Apple QuickTime 7.7.2 and earlier is vulnerable to remote code execution due to a failure to perform appropriate boundary checking. A remote attacker who...

Apple QuickTime TeXML Style Element Buffer Overflow

Added: 12/24/2012 CVE: CVE-2012-3752 BID: 56557 OSVDB: 87087 Background QuickTime is a media player for Windows and Mac OS platforms. Problem Apple QuickTime 7.7.2 and earlier is vulnerable to remote code execution due to a failure to perform appropriate boundary checking. A remote attacker who...

EZHomeTech EzServer Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in EZhome Teck EzServer. The vulnerability is due to a bound checking error when processing specially crafted user-supplied input. A remote attacker can trigger the vulnerability by sending a specially crafted request to the server. Successf...

Apple QuickTime Targa File Buffer Overflow (CVE-2012-3755)

A buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to a bounds-checking error. A remote attacker can exploit this vulnerability by enticing a user to process a specially crafted Targa file. Successful exploitation may lead to arbitrary code execution...

Buffer Overflow Bugs Found in Informix database Servers

Several versions of the popular Informix database server from IBM contain two buffer overflow vulnerabilities that could lead to remote code execution. The problems affect eight different versions of the server and are present on Informix installations on all supported platforms. A researcher at...

SuSE Update for qemu openSUSE-SU-2012:1170-1 (qemu)

Check for the Version of qemu OpenVAS Vulnerability Test $Id: gbsuse201211701.nasl 8273 2018-01-03 06:29:19Z teissa $ SuSE Update for qemu openSUSE-SU-2012:1170-1 qemu Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is fre...

openSUSE: Security Advisory for qemu (openSUSE-SU-2012:1170-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Nagios Core 3.4.3 Buffer Overflow Vulnerability

Nagios Core version 3.4.3 suffers from a stack-based buffer overflow vulnerability in the history.cgi web interface. history.cgi is vulnerable to a buffer overflow due to the use of sprintf with user supplied data that has not been restricted in size. This vulnerability does not appear to be...

Scientific Linux Security Update : mysql on SL6.x i386/x86_64 (20121207)

A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. CVE-2012-5611 After installi...

Debian DSA-2582-1 : xen - several vulnerabilities

Multiple denial of service vulnerabilities have been discovered in the Xen Hypervisor. One of the issue CVE-2012-5513 could even lead to privilege escalation from guest to host. Some of the recently published Xen Security Advisories XSA 25and 28 are not fixed by this update and should be fixed in...

Important: mysql51

Issue Overview: A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. CVE-2012-561...

HVMOP_get_mem_access crash / HVMOP_set_mem_access information leak

ISSUE DESCRIPTION The HVMOPsetmemaccess operation handler uses an input as an array index before range checking it. IMPACT A malicious guest administrator can cause Xen to crash. If the out of array bounds access does not crash, the arbitrary value read will be used if the caller reads back the...

Active Defense class software generic implementation vulnerability-a vulnerability warning-the black bar safety net

Active Defense software in the realization of the presence of a Common Vulnerability, malware can take to bypass security checks to perform malicious acts The main anti-block system some of the key operation in these monitoring points do parameter checking. Because the parameters often come from...