69 matches found
UBUNTU-CVE-2017-9617
In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...
CVE-2017-9617
In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...
CVE-2017-9617
In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...
CVE-2017-9617
No detailed technical information for CVE-2017-9617 is provided in the connected documents. Public details (affected products/versions, exploit info, or patches) are not available here; monitor for updates from vendors or security advisories.
CVE-2017-9617
In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...
KLA11063 Denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark version 2.2.7. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. A stack exhaustion vulnerability in the DAAP dissector can be exploited remotely via a...
Nmap NSE net: daap-get-library
Retrieves a list of music from a DAAP server. The list includes artist names and album and song titles. Output will be capped to 100 items if not otherwise specified in the 'daapitemlimit' script argument. A 'daapitemlimit' below zero outputs the complete contents of the DAAP library. Based on...
Nmap NSE net: daap-get-library
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
daap-get-library NSE Script
Retrieves a list of music from a DAAP server. The list includes artist names and album and song titles. Output will be capped to 100 items if not otherwise specified in the daapitemlimit script argument. A daapitemlimit below zero outputs the complete contents of the DAAP library. Based on...
Banshee 1.4.2 DAAP Extension - appswebvs_diag.cgi Cross-Site Scripting
Banshee 1.4.2 DAAP Extension - appswebvsdiag.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/34507/info Banshee DAAP Extension is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...
Banshee 1.4.2 DAAP Extension - '/apps/web/vs_diag.cgi' Cross-Site Scripting
source: https://www.securityfocus.com/bid/34507/info Banshee DAAP Extension is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...
CVE-2009-1175
Cross-site scripting XSS vulnerability in apps/web/vsdiag.cgi in the DAAP extension in Banshee 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the server parameter, which is not properly handled in an error message...
CVE-2009-1175
Cross-site scripting XSS vulnerability in apps/web/vsdiag.cgi in the DAAP extension in Banshee 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the server parameter, which is not properly handled in an error message...
CVE-2009-1175
CVE-2009-1175 is a cross-site scripting vulnerability in Banshee's DAAP extension (version 1.4.2) affecting apps/web/vs_diag.cgi where the server parameter is not properly handled in error messages. This allows remote script/HTML injection. Exploitation details are not provided in the supplied do...
CVE-2009-1175
Cross-site scripting XSS vulnerability in apps/web/vsdiag.cgi in the DAAP extension in Banshee 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the server parameter, which is not properly handled in an error message...
CVE-2009-1175
Removed by vendor...
Apple iTunes Multiple Vulnerabilities
This host has Apple iTunes installed, which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbappleitunesmultvulnmar09.nasl 8169 2017-12-19 08:42:31Z cfischer $ Apple iTunes Multiple Vulnerabilities Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Apple iTunes Multiple Vulnerabilities
Apple iTunes is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes"; ifdescription...
Apple iTunes DAAP Messages Handling Denial of Service Vulnerability
Apple iTunes DAAP Messages Handling Denial of Service Vulnerability 2009.Mar.13 Fortinet's FortiGuard Global Security Research Team Discovers Vulnerability in Apple iTunes Summary: ======== A DoS vulnerability in Apple iTunes through a maliciously crafted DAAP message. Impact: ======...
Apple iTunes DoS
DoS with DAAP messages...