Lucene search
K

20 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.22 views

Oracle: Security Advisory (ELSA-2008-0649)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.12789EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.30 views

Scientific Linux Security Update : libxslt on SL4.x, SL5.x i386/x86_64

A heap buffer overflow flaw was discovered in the RC4 libxslt library extension. An attacker could create a malicious XSL file that would cause a crash, or, possibly, execute arbitrary code with the privileges of the application using the libxslt library to perform XSL transformations on untruste...

7.5CVSS8.9AI score0.12789EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.30 views

CentOS 4 / 5 : libxslt (CESA-2008:0649)

Updated libxslt packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. libxslt is a library for transforming XML files into other XML...

7.5CVSS8.7AI score0.12789EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.16 views

openSUSE Security Update : libxslt (libxslt-110)

A heap overflow in the RC4 cryptographic routines in libxslt was fixed which could be used by attackers to potentially execute code. CVE-2008-2935 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

7.5CVSS8.3AI score0.12789EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.33 views

Ubuntu Update for libxslt vulnerabilities USN-633-1

Ubuntu Update for Linux kernel vulnerabilities USN-633-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6331.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for libxslt vulnerabilities USN-633-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

7.5CVSS0.6AI score0.1279EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.15 views

Ubuntu: Security Advisory (USN-633-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.1279EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.26 views

Fedora Update for libxslt FEDORA-2008-7062

Check for the Version of libxslt OpenVAS Vulnerability Test Fedora Update for libxslt FEDORA-2008-7062 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS0.12789EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.26 views

Fedora Update for libxslt FEDORA-2008-7029

Check for the Version of libxslt OpenVAS Vulnerability Test Fedora Update for libxslt FEDORA-2008-7029 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS0.12789EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.18 views

Fedora Update for libxslt FEDORA-2008-7029

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS6.6AI score0.12789EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.17 views

Gentoo Security Advisory GLSA 200808-06 (libxslt)

The remote host is missing updates announced in advisory GLSA 200808-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.5AI score0.12789EPSS
Exploits2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.11 views

Gentoo Security Advisory GLSA 200808-06 (libxslt)

The remote host is missing updates announced in advisory GLSA 200808-06. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.12789EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2008/09/03 12:0 a.m.22 views

openSUSE 10 Security Update : libxslt (libxslt-5458)

A heap overflow in the RC4 cryptographic routines in libxslt was fixed which could be used by attackers to potentially execute code. CVE-2008-2935 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

7.5CVSS8.3AI score0.12789EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2008/08/15 12:0 a.m.21 views

Debian Security Advisory DSA 1624-1 (libxslt)

The remote host is missing an update to libxslt announced via advisory DSA 1624-1. OpenVAS Vulnerability Test $Id: deb16241.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1624-1 libxslt Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

7.5CVSS0.5AI score0.12789EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2008/08/08 12:0 a.m.27 views

Fedora 9 : libxslt-1.1.24-2.fc9 (2008-7062)

fix for CVE-2008-2935 problem in exslt rc4 crypto extensions Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

7.5CVSS8.1AI score0.12789EPSS
Exploits2References3
OSV
OSV
added 2008/08/01 2:41 p.m.6 views

CVE-2008-2935

Multiple heap-based buffer overflows in the rc4 1 encryption aka exsltCryptoRc4EncryptFunction and 2 decryption aka exsltCryptoRc4DecryptFunction functions in crypto.c in libexslt in libxslt 1.1.8 through 1.1.24 allow context-dependent attackers to execute arbitrary code via an XML file containin...

7.3AI score
Exploits0References28
Ubuntu
Ubuntu
added 2008/08/01 2:32 p.m.66 views

USN-633-1: libxslt vulnerabilities

It was discovered that long transformation matches in libxslt could overflow. If an attacker were able to make an application linked against libxslt process malicious XSL style sheet input, they could execute arbitrary code with user privileges or cause the application to crash, leading to a deni...

7.5CVSS8.3AI score0.1279EPSS
Exploits4
CVE
CVE
added 2008/08/01 2:0 p.m.86 views

CVE-2008-2935

CVE-2008-2935 affects libxslt 1.1.8–1.1.24 via heap-based buffer overflows in the RC4 S-Box code in libexslt (exsltCryptoRc4EncryptFunction/exsltCryptoRc4DecryptFunction). An XML stylesheet containing a long string as an argument in the XSL input could allow a context-dependent attacker to execut...

7.5CVSS7.2AI score0.12789EPSS
Exploits2References27Affected Software1
securityvulns
securityvulns
added 2008/08/01 12:0 a.m.76 views

[oCERT-2008-009] libxslt heap overflow

2008/07/31 2008-009 libxslt heap overflow Description: The libexslt library bundled with libxslt is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is present in the rc4 encryption/decryption functions. An arbitrary length string, passed as a...

7.5CVSS1.8AI score0.12789EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2008/08/01 12:0 a.m.22 views

Debian DSA-1624-1 : libxslt - buffer overflows

Chris Evans discovered that a buffer overflow in the RC4 functions of libexslt may lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-1624. The text...

7.5CVSS8.8AI score0.12789EPSS
Exploits2References2
Debian
Debian
added 2008/07/31 8:19 p.m.28 views

[SECURITY] [DSA 1624-1] New libxslt packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1624-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 31, 2008 http://www.debian.org/security/faq -...

7.5CVSS6.8AI score0.12789EPSS
Exploits2
Rows per page
Query Builder