34 matches found
MiracleLinux 3 : dnsmasq-2.45-1.1.1AXS3 (AXSA:2009-389:01)
The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2009-389:01 advisory. Dnsmasq is lightweight, easy to configure DNS forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network. It...
SUSE CVE-2009-2958
The tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TFTP read aka RRQ request with a malformed blksize option...
Dnsmasq Malicious BLKSIZE Option NULL Dereference Denial of Service (CVE-2009-2958)
A denial-of-service vulnerability has been reported in Thekelleys Dnsmasq. The vulnerability is due to a NULL pointer dereference in the tftprequest function inside src/ftpd.c. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on t...
OracleVM 2.1 : dnsmasq (OVMSA-2009-0022)
The remote OracleVM system is missing necessary patches to address critical security updates : CVE-2009-2957 Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long...
Oracle Linux 5 : dnsmasq (ELSA-2009-1238)
The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-1238 advisory. - problems with strings when enabling tftp CVE-2009-2957 and CVE-2009-2957 Tenable has extracted the preceding description block directly from the Orac...
Scientific Linux Security Update : dnsmasq on SL5.x i386/x86_64
CVE-2009-2957, CVE-2009-2958 dnsmasq: multiple vulnerabilities in TFTP server Core Security Technologies discovered a heap overflow flaw in dnsmasq when the TFTP service is enabled the '--enable-tftp' command line option, or by enabling 'enable-tftp' in '/etc/dnsmasq.conf'. If the configured...
CentOS Update for dnsmasq CESA-2009:1238 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for gnutls CESA-2009:123 centos5 i386
Check for the Version of gnutls OpenVAS Vulnerability Test CentOS Update for gnutls CESA-2009:123 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Security fix for the ALT Linux 5 package dnsmasq version 2.46-alt1.1.M51.2
March 1, 2010 Mikhail Efremov 2.46-alt1.1.M51.2 - fix TFTP server vulnerabilities CVE-2009-2957, CVE-2009-2958...
Debian DSA-1876-1 : dnsmasq - buffer overflow
Several remote vulnerabilities have been discovered in the TFTP component of dnsmasq. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2957 A buffer overflow in TFTP processing may enable arbitrary code execution to attackers which are permitted to u...
Fedora Core 10 FEDORA-2009-10252 (dnsmasq)
The remote host is missing an update to dnsmasq announced via advisory FEDORA-2009-10252. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora Core 11 FEDORA-2009-10285 (dnsmasq)
The remote host is missing an update to dnsmasq announced via advisory FEDORA-2009-10285. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Gentoo Security Advisory GLSA 200909-19 (dnsmasq)
The remote host is missing updates announced in advisory GLSA 200909-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CORE-2009-0820 - Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server...
CentOS Security Advisory CESA-2009:1238 (dnsmasq)
The remote host is missing updates to dnsmasq announced in advisory CESA-2009:1238. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Ubuntu: Security Advisory (USN-827-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Dnsmasq < 2.50 - Heap Overflow / Null Pointer Dereference
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server...
CVE-2009-2958
creationtimestamp| type| source ---|---|--- 2009-09-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9617...
SuSE Security Summary SUSE-SR:2009:014
The remote host is missing updates announced in advisory SUSE-SR:2009:014. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
Dnsmasq 2.50 - Heap Overflow Null Pointer Dereference
Dnsmasq 2.50 - Heap Overflow Null Pointer Dereference -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap...