8 matches found
Red Hat Directory Server Accept-Language HTTP Header Parsing Buffer Overflow (CVE-2008-2928)
Red Hat Directory Server is an LDAP-based server that centralizes application settings, user profiles, group data, policies, and access control information into an operating system-independent, network-based registry. Fedora Directory Server is a free version of Red Hat Directory Server. There...
Fedora Update for adminutil FEDORA-2008-7339
Check for the Version of adminutil OpenVAS Vulnerability Test Fedora Update for adminutil FEDORA-2008-7339 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Fedora Update for adminutil FEDORA-2008-7642
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 9 : adminutil-1.1.7-1.fc9 (2008-7339)
Fixes these bugs: - CVE-2008-2928 - buffer overflow in Accept-Language parsing 413531 Web browser accepted languages configuration causes dsgw CGI binaries to segfault - improved fix for CVE-2008-2929 XSS issues originally addressed in 1.1.6, that does not introduce heap overflow in parsing...
Fedora 8 : adminutil-1.1.7-1.fc8 (2008-7642)
Fixes these bugs: - CVE-2008-2928 - buffer overflow in Accept-Language parsing 413531 Web browser accepted languages configuration causes dsgw CGI binaries to segfault - improved fix for CVE-2008-2929 XSS issues originally addressed in 1.1.6, that does not introduce heap overflow in parsing...
HPSBUX02354 SSRT080113 rev.1 - HP-UX Running Netscape / Red Hat Directory Server, Remote Cross Site Scripting (XSS) or Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01532861 Version: 1 HPSBUX02354 SSRT080113 rev.1 - HP-UX Running Netscape / Red Hat Directory Server, Remote Cross Site Scripting XSS or Remote Denial of Service DoS NOTICE: The information in th...
CVE-2008-2928
CVE-2008-2928 affects Red Hat Directory Server 7.1 with Service Pack 7. A buffer overflow in the adminutil CGI components can be triggered by a crafted Accept-Language HTTP header, allowing remote attackers to crash the daemon or possibly execute arbitrary code. Connected advisory RHSA-2008:0596 ...
Red Hat Directory Server接受语言HTTP头字段缓冲区溢出漏洞
BUGTRAQ ID: 30869 CVE ID: CVE-2008-2928 CNCVE ID:CNCVE-20082928 Red Hat Directory Server是一款LDAPv3兼容的目录服务程序。 Red Hat Directory Server包含的对个CGI应用吃呢供需处理Accept-Language HTTP头字段存在缓冲区溢出,远程攻击者可以利用漏洞以管理服务器应用程序权限执行任意指令。 能访问管理服务器WEB接口的攻击者可使用这个漏洞使这些CGI应用程序崩溃,或者可能以应用程序权限执行任意代码。注意:Red Hat Directory Server...