Mandriva Security Advisory MDVSA-2009:252-1 (perl-IO-Socket-SSL)

The remote host is missing an update to perl-IO-Socket-SSL announced via advisory MDVSA-2009:252-1. OpenVAS Vulnerability Test $Id: mdksa20092521.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:252-1 perl-IO-Socket-SSL Authors: Thomas Reinke Copyrigh...

Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page or open a malicious SWF file. The specific flaw exists in the parsi...

Apple Safari 'CSS' Buffer Overflow Vulnerability (Dec 2009) - Windows

Apple Safari Web Browser is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Fujitsu SystemcastWizard Lite PXEService UDP Handling Buffer Overflow (CVE-2009-0270)

Fujitsu SystemcastWizard software is one of the management tools included in the Systemwalker Resource Coordinator, which is a provisioning software by Fujitsu to efficiently and reliably operate blade servers. SystemcastWizard can install operating system images remotely and clone them on other...

Update Protection against HP Power Manager Remote Code Execution

A remote code execution vulnerability exists within HP Power Manager, a web-based application for managing a HP Uninterruptible Power System UPS. The vulnerability is due to insufficient bounds checking in the HP Power Manager while processing URL parameters in the login form of the web based...

Microsoft Word Document Stream Handling Code Execution (MS07-024; CVE-2007-0870)

Microsoft Word is a document authoring product released by the Microsoft Corporation. Microsoft Word is available packaged with the Microsoft Office suite, as well as in form of a standalone product. Its native file format is the Word Document, normally identified by the .doc file extension. A Wo...

ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability

ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-079 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

Hewlett-Packard Power Manager Administration Web Server Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Power Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of URL parameters when posting to the login form of the web bas...

ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability

ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-078 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

Pegasus Mail POP3 Response Buffer Overflow Vulnerability

Pegasus Mail is prone to stack-based Buffer Overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the processing of arguments to t...

nginx HTTP Request Header Remote Buffer Overflow

Binary data 5216.prm...

MailEnable SMTP Authentication Buffer Overflow (CVE-2005-1781)

MailEnable is an email server suite for the Microsoft Windows platform. The product supports a number of popular mail transfer protocols such as SMTP, POP3 and IMAP. The authentication extensions to the SMTP protocol are also supported by the product. There exists a vulnerability in the SMTP...

Apple Computer Finder DMG Volume Name Memory Corruption (CVE-2007-0197)

Apple Computer Mac OS X is the operating system bundled with Apple Macintosh computers. The graphical user interface shell of Mac OS X, Finder, allows for graphical browsing of the system. The Finder is also responsible for user-management of files, disks, network volumes and the launching of oth...

Preemptive Protection against Dnsmasq TFTP Service Remote Heap Buffer Overflow

A buffer overflow vulnerability has been reported in Dnsmasq, a lightweight DNS forwarder and DHCP server, designed to provide DNS services to a small-scale network. The vulnerability is due to improper bounds checking when handling TFTP Read requests. A remote attacker can exploit this...

SuSE 10 Security Update : multipath-tools (ZYPP Patch Number 6083)

Default permissions on the multipathd socket file were to generous and allowed any user to connect. CVE-2009-0115 This update also contains the following fixes : - Error checking in VECTORXXX defines. bnc469269 - Correct definition of dbgmalloc - Double free on path release - Use noflush for...

RHEL 3 / 4 / 5 : fetchmail (RHSA-2009:1427)

An updated fetchmail package that fixes multiple security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility intended for...

RedHat Security Advisory RHSA-2009:1427

The remote host is missing updates announced in advisory RHSA-2009:1427. Fetchmail is a remote mail retrieval and forwarding utility intended for use over on-demand TCP/IP links, such as SLIP and PPP connections. It was discovered that fetchmail is affected by the previously published null prefix...

fetchmail security update

CentOS Errata and Security Advisory CESA-2009:1427 An updated fetchmail package that fixes multiple security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Fetchmail is a remote...

Moderate: Red Hat Security Advisory: fetchmail security update

An updated fetchmail package that fixes multiple security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility intended for...