Debian DSA-2425-1 : plib - buffer overflow

It was discovered that PLIB, a library used by TORCS, contains a buffer overflow in error message processing, which could allow remote attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...

Debian DSA-2419-1 : puppet - several vulnerabilities

Two vulnerabilities were discovered in Puppet, a centralized configuration management tool. - CVE-2012-1053 Puppet runs execs with an unintended group privileges, potentially leading to privilege escalation. - CVE-2012-1054 The k5login type writes to untrusted locations, enabling local users to...

Debian DSA-2413-1 : libarchive - buffer overflows

Two buffer overflows have been discovered in libarchive, a library providing a flexible interface for reading and writing archives in various formats. The possible buffer overflows while reading ISO 9660 or tar streams allow remote attackers to execute arbitrary code depending on the application...

Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability

Description Oracle Java SE is prone to a remote code execution vulnerability in Java Runtime Environment. An attacker can exploit this issue to bypass the Java sandbox restriction and execute arbitrary code. This vulnerability affects the following supported versions: 7 Update 2, 6 Update 30, 5.0...

Debian DSA-2392-1 : openssl - out-of-bounds read

Antonio Martin discovered a denial-of-service vulnerability in OpenSSL, an implementation of TLS and related protocols. A malicious client can cause the DTLS server implementation to crash. Regular, TCP-based TLS is not affected by this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Debian DSA-2386-1 : openttd - several vulnerabilities

Several vulnerabilities have been discovered in OpenTTD, a transport business simulation game. Multiple buffer overflows and off-by-one errors allow remote attackers to cause denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

ProFTPD Prior To 1.3.3g Use-After-Free 远程代码执行漏洞

CVE-2011-4130 ProFTPD的是一个远程代码执行漏洞， 允许攻击者执行任意代码。失败的攻击尝试将导致拒绝服务， 1.3.3g前的ProFTPD存在此漏洞 Red Hat Fedora 16 Red Hat Fedora 15 Red Hat Fedora 14 ProFTPD Project ProFTPD 1.3.3 rc2 ProFTPD Project ProFTPD 1.3.3 ProFTPD Project ProFTPD 1.3.2 rc3 ProFTPD Project ProFTPD 1.3.2 rc2 ProFTPD Project ProFTPD 1.3...

Debian DSA-2355-1 : clearsilver - format string vulnerability

Leo Iannacone and Colin Watson discovered a format string vulnerability in the Python bindings for the Clearsilver HTML template system, which may lead to denial of service or the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Debian DSA-2353-1 : ldns - buffer overflow

David Wheeler discovered a buffer overflow in ldns's code to parse RR records, which could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2353. Th...

Debian DSA-2351-1 : wireshark - buffer overflow

Huzaifa Sidhpurwala discovered a buffer overflow in Wireshark's ERF dissector, which could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2351. Th...

Debian DSA-2347-1 : bind9 - improper assert

It was discovered that BIND, a DNS server, crashes while processing certain sequences of recursive DNS queries, leading to a denial of service. Authoritative-only server configurations are not affected by this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Debian DSA-2344-1 : python-django-piston - deserialization vulnerability

It was discovered that the Piston framework can deserializes untrusted YAML and Pickle data, leading to remote code execution CVE-2011-4103 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

OpenOffice Microsoft Word文件格式输入程序多个安全漏洞

BUGTRAQ ID: 49969 CVE ID: CVE-2011-2713 OpenOffice原是Sun公司的一套商业级Office软件－StarOffice，经过Sun公司公开程序码之后，正式命名为OpenOffice发展计划。 OpenOffice.org的二进制.doc文件格式输入程序在实现上存在多个漏洞，目前技术细节不明。 Debian Linux 6.0 x OpenOffice OpenOffice 3.2.1 厂商补丁： OpenOffice ---------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

ABUS TVIP 11550/21550 Multiple vulnerabilities (and possibly other ABUS cams)

Title : ABUS TVIP 11550/21550 Multiple vulnerabilities and possibly other ABUS cams Author : Marco van Berkum - Summary - Arbitrary file read - Arbitrary file upload - Arbitrary command excution input validation bug - How it's totally compromised including ssh root login. - Summary The ABUS 11550...

ABUS TVIP 11550/21550 File Read / File Upload / Command Execution

Title : ABUS TVIP 11550/21550 Multiple vulnerabilities and possibly other ABUS cams Author : Marco van Berkum - Summary - Arbitrary file read - Arbitrary file upload - Arbitrary command excution input validation bug - How it's totally compromised including ssh root login. - Summary The ABUS 11550...

Debian DSA-2293-1 : libxfont - buffer overflow

Tomas Hoger found a buffer overflow in the X.Org libXfont library, which may allow for a local privilege escalation through crafted font files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

Debian DSA-2288-1 : libsndfile - integer overflow

Hossein Lotfi discovered an integer overflow in libsndfile's code to parse Paris Audio files, which could potentially lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

Debian DSA-2278-1 : horde3 - several vulnerabilities

It was discovered that horde3, the horde web application framework, is prone to a cross-site scripting attack and a cross-site request forgery. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

Debian DSA-2270-1 : qemu-kvm - programming error

It was discovered that incorrect sanitising of virtio queue commands in KVM, a solution for full virtualization on x86 hardware, could lead to denial of service or the execution of arbitrary code. The oldstable distribution lenny is not affected by this problem. %NASLMINLEVEL 70300 C Tenable...

Debian DSA-2265-1 : perl - lack of tainted flag propagation

Mark Martinec discovered that Perl incorrectly clears the tainted flag on values returned by case conversion functions such as 'lc'. This may expose preexisting vulnerabilities in applications which use these functions while processing untrusted input. No such applications are known at this stage...