Lucene search
K

13 matches found

Check Point Advisories
Check Point Advisories
added 2010/08/17 12:0 a.m.9 views

Apache HTTP Server auth_ldap Logging Function Format String (CVE-2005-3656; CVE-2006-0150)

There exists a format string vulnerability in the authldap module used with Apache HTTP server. The vulnerability is a result of the failure to properly verify string arguments passed to a logging function, resulting in a memory corruption condition. A remote attacker can exploit this vulnerabili...

10CVSS7.3AI score0.089EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.12 views

Gentoo Security Advisory GLSA 200601-05 (mod_auth_pgsql)

The remote host is missing updates announced in advisory GLSA 200601-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.089EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.34 views

Gentoo Security Advisory GLSA 200601-05 (mod_auth_pgsql)

The remote host is missing updates announced in advisory GLSA 200601-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS0.8AI score0.089EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.18 views

Debian Security Advisory DSA 935-1 (libapache2-mod-auth-pgsql)

The remote host is missing an update to libapache2-mod-auth-pgsql announced via advisory DSA 935-1. iDEFENSE reports that a format string vulnerability in modauthpgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the...

10CVSS0.9AI score0.089EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.22 views

Debian DSA-935-1 : libapache2-mod-auth-pgsql - format string vulnerability

iDEFENSE reports that a format string vulnerability in modauthpgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the privileges of the httpd user. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

10CVSS6AI score0.089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.17 views

CentOS 3 / 4 : mod_auth_pgsql (CESA-2006:0164)

Updated modauthpgsql packages that fix format string security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The modauthpgsql package is an httpd module that allows user...

10CVSS5.5AI score0.089EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.28 views

Fedora Core 4 : mod_auth_pgsql-2.0.1-8.1 (2006-015)

Several format string flaws were found in the way modauthpgsql logs information. It may be possible for a remote attacker to execute arbitrary code as the 'apache' user if modauthpgsql is used for user authentication. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-365...

10CVSS5.5AI score0.089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.22 views

Mandrake Linux Security Advisory : apache2-mod_auth_pgsql (MDKSA-2006:009)

iDefense discovered several format string vulnerabilities in the way that modauthpgsql logs information which could potentially be used by a remote attacker to execute arbitrary code as the apache user if modauthpgsql is used for user authentication. The provided packages have been patched to...

10CVSS6.1AI score0.089EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.20 views

Fedora Core 3 : mod_auth_pgsql-2.0.1-6.2 (2006-014)

Several format string flaws were found in the way modauthpgsql logs information. It may be possible for a remote attacker to execute arbitrary code as the 'apache' user if modauthpgsql is used for user authentication. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-365...

10CVSS5.5AI score0.089EPSS
Exploits0References2
Debian
Debian
added 2006/01/10 2:14 p.m.24 views

[SECURITY] [DSA 935-1] New libapache2-mod-auth-pgsql packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 935-1 [email protected] http://www.debian.org/security/ Michael Stone January 10, 2006 http://www.debian.org/security/faq -...

10CVSS6.9AI score0.089EPSS
Exploits0
securityvulns
securityvulns
added 2006/01/09 12:0 a.m.31 views

[Full-disclosure] [USN-239-1] libapache2-mod-auth-pgsql vulnerability

=========================================================== Ubuntu Security Notice USN-239-1 January 09, 2006 libapache2-mod-auth-pgsql vulnerability CVE-2005-3656 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 Warty...

10CVSS0.3AI score0.089EPSS
Exploits0
CVE
CVE
added 2006/01/06 11:0 a.m.61 views

CVE-2005-3656

CVE-2005-3656 describes a format-string vulnerability in mod_auth_pgsql used for authenticating against PostgreSQL. The flaw in logging functions could enable remote, unauthenticated code execution with the httpd user. Affected modules include libapache2-mod-auth-pgsql; multiple advisories (Red H...

10CVSS7.5AI score0.089EPSS
Exploits0References24Affected Software1
Cent OS
Cent OS
added 2006/01/06 8:44 a.m.67 views

mod_auth_pgsql security update

CentOS Errata and Security Advisory CESA-2006:0164 Updated modauthpgsql packages that fix format string security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The modauthpgsql...

10CVSS5.9AI score0.089EPSS
Exploits0References9
Rows per page
Query Builder