Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 5 : subversion (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - subversion: Command injection through clients via malicious svn+ssh URLs CVE-2017-9800 - The...

8.6AI score0.19628EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.42 views

Ubuntu 14.04 LTS / 16.04 LTS : Subversion vulnerabilities (USN-3388-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3388-1 advisory. Joern Schneeweisz discovered that Subversion did not properly handle host names in 'svn+ssh://' URLs. A remote attacker could use this to...

9.8CVSS7.3AI score0.18892EPSS
Exploits3References4
NVD
NVD
added 2016/05/05 6:59 p.m.17 views

CVE-2016-2167

The canonicalizeusername function in svnserve/cyrusauth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repositor...

6.8CVSS6.8AI score0.06814EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2016/05/05 12:0 a.m.18 views

CVE-2016-2167

The canonicalizeusername function in svnserve/cyrusauth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repositor...

6.8CVSS6.8AI score0.06814EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.25 views

CentOS Update for postfix CESA-2011:0843 centos4 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0843 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.8CVSS9.6AI score0.21646EPSS
Exploits1References2
NVD
NVD
added 2011/05/13 5:5 p.m.15 views

CVE-2011-1720

The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service...

6.8CVSS8.3AI score0.21646EPSS
Exploits1References18
Debian CVE
Debian CVE
added 2011/05/13 5:0 p.m.27 views

CVE-2011-1720

The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service...

6.8CVSS9.9AI score0.21646EPSS
Exploits1
Rows per page
Query Builder