23 matches found
Oracle: Security Advisory (ELSA-2008-0002)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 5 : Critical: / tog-pegasus (ELSA-2008-0002)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2008-0002 advisory. 2.6.1-2.el51.1.0.1 - Added pegasus-enterprise.patch to allow detection of enterprise-release 2.6.1-2.el51.1 - Fix PAM authentication buffer overflow CVE-2008-00...
VMSA-2008-0007 : Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
a. Updated pcre Service Console package addresses several security issues The pcre package contains the Perl-Compatible Regular Expression library. pcre is used by various Service Console utilities. Several security issues were discovered in the way PCRE handles regular expressions. If an...
RedHat Security Advisory RHSA-2008:0002
The remote host is missing updates announced in advisory RHSA-2008:0002. OpenVAS Vulnerability Test $Id: RHSA20080002.nasl 6683 2017-07-12 09:41:57Z cfischer $ Description: Auto-generated from advisory RHSA-2008:0002 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
RedHat Security Advisory RHSA-2008:0002
The remote host is missing updates announced in advisory RHSA-2008:0002. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
RedHat Update for tog-pegasus RHSA-2008:0002-01
Check for the Version of tog-pegasus OpenVAS Vulnerability Test RedHat Update for tog-pegasus RHSA-2008:0002-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
CentOS Update for tog-pegasus CESA-2008:0002 centos4 i386
Check for the Version of tog-pegasus OpenVAS Vulnerability Test CentOS Update for tog-pegasus CESA-2008:0002 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Fedora Update for tog-pegasus FEDORA-2008-0572
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for tog-pegasus FEDORA-2008-0506
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
HP-UX PHSS_37891 : HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges (HPSBMA02331 SSRT080000 rev.3)
s700800 11.31 HP WBEM Services A.02.07 : Potential security vulnerabilities have been identified with HP-UX running WBEM Services. These vulnerabilities could be exploited remotely to execute arbitrary code or to gain extended privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
HP-UX PHSS_37704 : HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges (HPSBMA02331 SSRT080000 rev.3)
s700800 11.31 HP WBEM Services A.02.05.08 : Potential security vulnerabilities have been identified with HP-UX running WBEM Services. These vulnerabilities could be exploited remotely to execute arbitrary code or to gain extended privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...
HP-UX PHSS_37702 : HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges (HPSBMA02331 SSRT080000 rev.3)
s700800 11.11 HP WBEM Services A.02.05.08 : Potential security vulnerabilities have been identified with HP-UX running WBEM Services. These vulnerabilities could be exploited remotely to execute arbitrary code or to gain extended privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...
HP-UX PHSS_37703 : HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges (HPSBMA02331 SSRT080000 rev.3)
s700800 11.23 HP WBEM Services A.02.05.08 : Potential security vulnerabilities have been identified with HP-UX running WBEM Services. These vulnerabilities could be exploited remotely to execute arbitrary code or to gain extended privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...
[security bulletin] HPSBMA02331 SSRT080000 rev.1 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01438409 Version: 1 HPSBMA02331 SSRT080000 rev.1 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges NOTICE: The information in this Security Bulletin shou...
Fedora 7 : tog-pegasus-2.6.0-3.fc7 (2008-0506)
Thu Jan 10 2008 Vitezslav Crhonek - 2.6.0-3 - Fix PAM authentication buffer overflow CVE-2008-0003 Resolves: 427828 - Wed Mar 28 2007 Vitezslav Crhonek - 2.6.0-2 - Update changelog - Build with Open Pegasus' Makefiles, istall with RedHats Mark Hamzy Note that Tenable Network Security has...
CentOS 4 / 5 : tog-pegasus (CESA-2008:0002)
Updated tog-pegasus packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The tog-pegasus packages provide OpenPegasus Web-Based Enterprise Management WBEM...
Fedora 8 : tog-pegasus-2.6.1-3.fc8 (2008-0572)
Thu Jan 10 2008 Vitezslav Crhonek - 2.6.1-3 - Fix PAM authentication buffer overflow CVE-2008-0003 Resolves: 427829 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...
OpenPegasus管理服务器PAM认证模块远程栈溢出漏洞
BUGTRAQ ID: 27188,27172 CVECAN ID: CVE-2008-0003,CVE-2007-5360 OpenPegasus是一个开源项目,用于实现DMTF CIM和WBEM企业管理标准。 OpenPegasus的PAM认证模块实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 OpenPegasus的PAM认证模块中的PAMBasicAuthenticator::PAMCallback函数存在缓冲区溢出漏洞: // // copy the user password // respi-resp = char mallocPAMMAXMSGSIZE;...
Buffer overflow
Buffer overflow in OpenPegasus Management server, when compiled to use PAM and with PEGASUSUSEPAMSTANDALONEPROC defined, as used in VMWare ESX Server 3.0.1 and 3.0.2, might allow remote attackers to execute arbitrary code via vectors related to PAM authentication, a different vulnerability than...
CVE-2008-0003
CVE-2008-0003 records a stack-based buffer overflow in OpenPegasus tog-pegasus within PAM authentication (PAMCallback) when PAM is enabled and PEGASUS_USE_PAM_STANDALONE_PROC is not defined. The flaw could allow unauthenticated remote code execution on affected CIM management servers. Public refe...