9 matches found
Solaris 10 (x86) : 139501-02
SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Mandrake Security Advisory MDVSA-2009:271 (libnasl)
The remote host is missing an update to libnasl announced via advisory MDVSA-2009:271. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Mandrake Security Advisory MDVSA-2009:271 (libnasl)
The remote host is missing an update to libnasl announced via advisory MDVSA-2009:271. OpenVAS Vulnerability Test $Id: mdksa2009271.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:271 libnasl Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
openSUSE Security Update : libnasl (libnasl-451)
This update of libnasl adds missing return value checks for openssl function calls. CVE-2009-0125 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libnasl-451. The text description of this plug...
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : ntp vulnerability (USN-705-1)
It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...
Solaris 10 (x86) : 139501-02
SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrando...
openSUSE 10 Security Update : libnasl (libnasl-5943)
This update of libnasl adds missing return value checks for openssl function calls. CVE-2009-0125 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libnasl-5943. The text description of this...
CVE-2009-0125
NOTE: this issue has been disputed by the upstream vendor. nasl/naslcrypto2.c in the Nessus Attack Scripting Language library aka libnasl 2.2.11 does not properly check the return value from the OpenSSL DSAdoverify function, which allows remote attackers to bypass validation of the certificate...
CVE-2009-0125
Technical details for CVE-2009-0125 are not publicly available in the provided documents. Monitor for updates from upstream and security advisories.