714 matches found
Multiple vulnerabilities found, fixed in OpenSSL
The OpenSSL Project has released new versions of its popular implementation of the Secure Sockets Layer SSL and Transport Layer Security TLS protocols to fix multiple security vulnerabilities. According to an advisory openssl.org, the update fixes three security flaws that carry “moderate severit...
kernel security and bug fix update
2.6.9-67.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
CVE-2008-0063
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
krb5: possible leak of sensitive data from krb5kdc using krb4 request
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
PT-2008-1050 · Mit +1 · Mit Kerberos 5 +1
Name of the Vulnerable Software and Affected Versions: MIT Kerberos 5 krb5kdc versions prior to the fixed version Red Hat Enterprise Linux affected versions not specified Description: The issue is related to the Kerberos 4 support in the KDC component of MIT Kerberos 5, where the unused portion o...
Memory corruption
PUBCONV.DLL in Microsoft Office Publisher 2007 does not properly clear memory when transferring data from disk to memory, which allows user-assisted remote attackers to execute arbitrary code via a malformed .pub page via a certain negative value, which bypasses a sanitization procedure that...
Scotty no trace CleanCache help you erase private history-vulnerability warning-the black bar safety net
In viruses and hackers to wreak havoc today, personal information security is particularly important, so that your information is not leaked out, the usual practice is to clear XP history, we can right-click on“Start”--properties--customize--clear, on the IE Properties window in Microsoft also...
phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl r57phpbbadmin2exec.pl phpBB adminstyles.php commands execution exploit tested on phpBB 2.0.13 by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru screen r57phpbbadmin2exec.pl -p http://blah.com/phpBB/admin/ -s 0864cb0abb396319c589ebc2a98c2c5d -c...
OpenSSH < 3.0.1 Multiple Vulnerabilities
Binary data 1986.prm...
CVE-2003-0291
The CVE-2003-0291 issue affects 3com OfficeConnect Remote 812 ADSL Router v1.1.7, where memory is not properly cleared from DHCP responses. This can allow remote attackers to sniff DHCP traffic and identify contents of prior HTTP requests, revealing partial confidentiality of past traffic. The pr...
OpenSSH < 3.0.1 Multiple Flaws
According to its banner, the remote host appears to be running OpenSSH version 3.0.1 or older. Such versions are reportedly affected by multiple flaws : - Provided KerberosV is enabled disabled by default, it may be possible for an attacker to partially authenticate. - It may be possible to crash...
AIX 4.2/4.3 - netstat -Z Statistic Clearing
source: https://www.securityfocus.com/bid/1660/info A vulnerability exists in versions 4.x. x of AIX, from IBM. Any local user can utilize the -Z command to netstat, without needing to be root. This will cause interface statistics to be reset. This could potentially interfere with programs that...
CVE-1999-1446
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored...
Security update 1970-01-01
...