5 matches found
Debian Security Advisory DSA 949-1 (crawl)
The remote host is missing an update to crawl announced via advisory DSA 949-1. Steve Kemp from the Debian Security Audit project discovered a security related problem in crawl, another console based dungeon exploration game in the vein of nethack and rogue. The program executes commands insecure...
Debian DSA-942-1 : albatross - design error
A design error has been discovered in the Albatross web application toolkit that causes user-supplied data to be used as part of template execution and hence arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 949-1] New crawl packages fix potential group games execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 949-1 [email protected] http://www.debian.org/security/ Martin Schulze January 20th, 2006 http://www.debian.org/security/faq -...
CVE-2006-0044
The CVE-2006-0044 issue affects Albatross web application toolkit prior to 1.33, where context.py contains a design/implementation flaw in handling template files and submitted form fields that enables remote code execution. Attack language is unspecified in some sources, but Debian/DSA advisorie...
[SECURITY] [DSA 942-1] New albatross packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 942-1 [email protected] http://www.debian.org/security/ Martin Schulze January 16th, 2006 http://www.debian.org/security/faq -...