Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.21 views

SLES9: Security update for id3lib

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: id3lib-examples id3lib id3lib-devel For more information, please visit the referenced security advisories. More details may also be found by searching for...

7.2CVSS0.5AI score0.00557EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.13 views

SLES9: Security update for id3lib

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: id3lib-examples id3lib id3lib-devel For more information, please visit the referenced security advisories. More details may also be found by searching for...

7.2CVSS6.4AI score0.00557EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.32 views

SuSE9 Security Update : id3lib (YOU Patch Number 11786)

This update fixes a bug that allows local attackers to overwrite arbitrary files. CVE-2007-4460 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid41150;...

7.2CVSS5.3AI score0.00557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.9 views

Mandriva Update for id3lib MDKSA-2007:180 (id3lib)

Check for the Version of id3lib OpenVAS Vulnerability Test Mandriva Update for id3lib MDKSA-2007:180 id3lib Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.2CVSS6.4AI score0.00557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.12 views

Fedora Update for id3lib FEDORA-2007-1774

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.6AI score0.00557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.14 views

Gentoo Security Advisory GLSA 200709-08 (id3lib)

The remote host is missing updates announced in advisory GLSA 200709-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.2CVSS0.1AI score0.00557EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.13 views

FreeBSD Ports: id3lib

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.2CVSS6.5AI score0.00557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.13 views

Debian Security Advisory DSA 1365-2 (id3lib3.8.3)

The remote host is missing an update to id3lib3.8.3 announced via advisory DSA 1365-2. OpenVAS Vulnerability Test $Id: deb13652.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1365-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.2CVSS0.8AI score0.00557EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.38 views

SuSE 10 Security Update : id3lib (ZYPP Patch Number 4317)

This update fixes a bug that allows local attackers to overwrite arbitrary files. CVE-2007-4460 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29462;...

7.2CVSS5.3AI score0.00557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.24 views

Fedora 7 : id3lib-3.8.3-17.fc7 (2007-1774)

This security update fixes a minor tempfile creation security issue CVE-2007-4460 by using mkstemp bugzilla 253553 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format i...

7.2CVSS5.3AI score0.00557EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.29 views

openSUSE 10 Security Update : id3lib (id3lib-4316)

This update fixes a bug that allows local attackers to overwrite arbitrary files. CVE-2007-4460 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update id3lib-4316. The text description of this plugin...

7.2CVSS5.3AI score0.00557EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2007/10/03 12:0 a.m.26 views

FreeBSD : id3lib -- insecure temporary file creation (15ec9123-7061-11dc-b372-001921ab2fa4)

Debian Bug report log reports : When tagging file $foo, a temporary copy of the file is created, and for some reason, libid3 doesn't use mkstemp but just creates $foo.XXXXXX literally, without any checking. This would silently truncate and overwrite an existing $foo.XXXXXX. %NASLMINLEVEL 70300 C...

7.2CVSS5.2AI score0.00557EPSS
Exploits1References2
Debian
Debian
added 2007/10/02 8:47 a.m.24 views

[SECURITY] [DSA 1365-3] New id3lib3.8.3 packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1365-3 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff, Dann Frazier October 2nd, 2007 http://www.debian.org/security/faq - -...

7.2CVSS5.8AI score0.00557EPSS
Exploits1
Debian
Debian
added 2007/09/09 9:28 p.m.17 views

[SECURITY] [DSA 1365-2] New id3lib3.8.3 packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1365-2 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 9th, 2007 http://www.debian.org/security/faq -...

7.2CVSS6AI score0.00557EPSS
Exploits1
Debian
Debian
added 2007/09/01 11:48 a.m.26 views

[SECURITY] [DSA 1365-1] New id3lib3.8.3 packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1365-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 1st, 2007 http://www.debian.org/security/faq -...

7.2CVSS5.8AI score0.00557EPSS
Exploits1
OSV
OSV
added 2007/08/21 9:17 p.m.4 views

CVE-2007-4460

The RenderV2ToFile function in tagfile.cpp in id3lib aka libid3 3.8.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file whose name is constructed from the name of a file being tagged...

6AI score
Exploits0References13
CVE
CVE
added 2007/08/21 9:0 p.m.77 views

CVE-2007-4460

CVE-2007-4460 affects id3lib (libid3) 3.8.3. The RenderV2ToFile function in tag_file.cpp allows a local attacker to overwrite arbitrary files via a symlink attack on a temporary file named from the target file. Impact is local confidentiality, integrity, and availability are at risk. Several advi...

7.2CVSS5.8AI score0.00557EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder