CVE-2009-3024

The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate...

CVE-2009-3024

CVE-2009-3024 affects the Perl IO::Socket::SSL module (versions 1.14–1.25). The verify_hostname_of_cert() function only matches the hostname prefix when no wildcard is used, allowing remote attackers to bypass hostname verification. Gentoo GLSA 201101-06 and related OpenVAS entries indicate vulne...

CVE-2009-3024

The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate...

Debian Security Advisory DSA 1843-2 (squid3)

The remote host is missing an update to squid3 announced via advisory DSA 1843-2. OpenVAS Vulnerability Test $Id: deb18432.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1843-2 squid3 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Gentoo Security Advisory GLSA 200908-03 (tiff)

The remote host is missing updates announced in advisory GLSA 200908-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

[SECURITY] [DSA 1843-2] New squid3 packages fix regression

-------------------------------------------------------------------------- Debian Security Advisory DSA-1843-2 [email protected] http://www.debian.org/security/ Nico Golde August 9th, 2009 http://www.debian.org/security/faq -...

TFM MMPlayer '.m3u' Buffer Overflow Vulnerability - July-09

This host is installed with TFM MMPlayer and is prone to stack based Buffer Overflow bulnerability. OpenVAS Vulnerability Test $Id: secpodtfmmmplayerm3ubofvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ TFM MM Player '.m3u' Buffer Overflow Vulnerability - July-09 Authors: Nikita MR Copyright:...

DSA-1843-1 squid3 - denial of service

Bulletin has no description...

Pixaria Gallery 2.3.5 (file) Remote File Disclosure Exploit

Exploit for unknown platform in category web applications =========================================================== Pixaria Gallery 2.3.5 file Remote File Disclosure Exploit =========================================================== ?php iniset"maxexecutiontime",0; printr' || || | || o,7 || . ...

openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-329)

This update backports security fixes to the Mozilla XULRunner engine. It fixes following security issues : CVE-2008-0017 / MFSA 2008-54: The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check...

Fedora 11 : webkitgtk-1.1.8-1.fc11 (2009-6166)

"WebKitGTK+ 1.1.8 contains many bug-fixes and updates including spell-checking support, enhanced error reporting, lots of ATK enhancements, support for copying images to the clipboard, and a new printing API since 1.1.5 that allows applications better control and monitoring of the printing proces...

[SECURITY] Fedora 11 Update: pam_krb5-2.3.5-1.fc11

This is pamkrb5, a pluggable authentication module that can be used with Linux-PAM and Kerberos 5. This module supports password checking, ticket creation, and optional TGT verification and conversion to Kerberos IV ticke ts. The included pamkrb5afs module also gets AFS tokens if so configured...

[SECURITY] Fedora 10 Update: pam_krb5-2.3.5-1.fc10

This is pamkrb5, a pluggable authentication module that can be used with Linux-PAM and Kerberos 5. This module supports password checking, ticket creation, and optional TGT verification and conversion to Kerberos IV ticke ts. The included pamkrb5afs module also gets AFS tokens if so configured...

Adobe Reader U3D RHAdobeMeta Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat and Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious web address or open a malicious file. The specific flaw exists...

[SECURITY] CVE-2009-0580 Apache Tomcat User enumeration vulnerability with FORM authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2009-0580: Tomcat information disclosure vulnerability Severity: Low Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.1.0 to 4.1.39 Tomcat 5.5.0 to 5.5.27 Tomcat 6.0.0 to 6.0.18 The unsupported Tomcat 3.x, 4.0.x and 5.0.x version...

Ubuntu USN-744-1 (lcms)

The remote host is missing an update to lcms announced via advisory USN-744-1. OpenVAS Vulnerability Test $Id: ubuntu7441.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7441.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-744-1 lcms Authors: Thomas Reinke...

Sorinara Soritong MP3 Player Stack Overflow Vulnerability

This host is running Sorinara Soritong MP3 Player and is prone to Stack Overflow Vulnerability. OpenVAS Vulnerability Test $Id: secpodsorinaramp3playerbofvuln.nasl 5374 2017-02-20 16:36:11Z cfi $ Sorinara Soritong MP3 Player Stack Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright c...

Mini Stream RM Downloader '.smi' File Buffer Overflow Vulnerability

Mini-stream RM Downloader is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mini Stream RM Downloader '.smi' File Buffer Overflow Vulnerability

The host is installed with Mini-stream RM Downloader and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodministreamrmdownloaderbofvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ Mini Stream RM Downloader '.smi' File Buffer Overflow Vulnerability Authors: Madhuri D...

Easy RM to MP3 Converter Buffer Overflow Vulnerability

This host is installed with Easy RM to MP3 Converter and is prone to Buffer Overflow Vulnerability. OpenVAS Vulnerability Test $Id: secpodeasyrmtomp3convbofvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ Easy RM to MP3 Converter Buffer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright...