10 matches found
Mageia: Security Advisory (MGASA-2014-0277)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for iodine FEDORA-2014-9279
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for iodine FEDORA-2014-9265
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : iodine-0.7.0-1.fc20 (2014-9265)
Update to 0.7.0 to fix CVE-2014-4168 iodine: authentication bypass vulnerability bz1110339, bz1110338 bz1110340, bz1110341, bz1110342. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...
Mandriva Linux Security Advisory : iodine (MDVSA-2014:128)
Updated iodine packages fix security vulnerability : Oscar Reparaz discovered an authentication bypass vulnerability in iodine, a tool for tunneling IPv4 data through a DNS server. A remote attacker could provoke a server to accept the rest of the setup or also network traffic by exploiting this...
CVE-2014-4168
1 iodined.c and 2 user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering...
CVE-2014-4168
CVE-2014-4168 affects iodine up to 0.7.0. The flaw in the code paths (iodined.c and user.c) allows a remote attacker to bypass authentication by continuing execution after an error. The vulnerability is network-exploitable and has a CVSS v2 base score of 5.0 (Medium). Remediation is to upgrade to...
CVE-2014-4168
1 iodined.c and 2 user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering...
Updated iodine packages fix CVE-2014-4168
Updated iodine packages fix security vulnerability: Oscar Reparaz discovered an authentication bypass vulnerability in iodine, a tool for tunneling IPv4 data through a DNS server. A remote attacker could provoke a server to accept the rest of the setup or also network traffic by exploiting this...
[SECURITY] [DSA 2964-1] iodine security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2964-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso June 21, 2014 http://www.debian.org/security/faq -...