CVE-2010-3192

Certain run-time memory protection mechanisms in the GNU C Library aka glibc or libc6 print argv0 and backtrace information, which might allow context-dependent attackers to obtain sensitive information from process memory by executing an incorrect program, as demonstrated by a setuid program tha...

Mandriva Linux Security Advisory : kernel (MDVSA-2010:198)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount symlinks, which allows attackers to have an unknown impact, related to LOOKUPFOLLOW. CVE-2010-1088 The tcfilltclass function in...

CVE-2008-7261

The Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 3.5.1 before 3.5.1-010 records DEBUG messages containing user credentials in the log4j.xml file, which might allow local users to obtain sensitive information by reading this file...

CVE-2008-7261

The Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 3.5.1 before 3.5.1-010 records DEBUG messages containing user credentials in the log4j.xml file, which might allow local users to obtain sensitive information by reading this file...

CVE-2008-7261

The CVE-2008-7261 entry affects IBM FileNet P8 Application Engine (P8AE) Workplace (WP) component, specifically version 3.5.1 prior to 3.5.1-010. The issue arises because DEBUG messages containing user credentials are written into the log4j.xml file, potentially allowing local users to read sensi...

Novell iPrint Client Browser Plugin - ExecuteRequest debug Stack Overflow

Novell iPrint Client Browser Plugin - ExecuteRequest debug Stack Overflow // Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+...

Novell iPrint Client Browser Plugin - ExecuteRequest debug Stack Overflow

// Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+ '%u873a%u9894%u843c%u61b5%u1206%u917a%ua348%ucad5%u4719%uf3b5'+...

Long a Target, Sony's PS3 Faces Pirate Onslaught

A run on programmable USB boards suggests that an open source version of the recent PSJailbreak could make it tough for Sony to stamp out PS3 piracy. Lawyers working for Sony Corp. spent the waning months of the Australian winter in court trying to stop sales of a new product, PSJailbreak, that...

Fedora 12 : php-pear-CAS-1.1.2-1.fc12 (2010-12247)

Security fixes Fix a session hijacking hole CVE-2010-2795 PHPCAS-61 callbackurl in proxy mode should be urlencoded, possible XSS CVE-2010-2796 PHPCAS-67 Bug fixes Fix warnings for SAML responses without attributes PHPCAS-59 Fix duplicate SAML debug output PHPCAS-64 Providing a new ST/PT/SA during...

Fedora 13 : php-pear-CAS-1.1.2-1.fc13 (2010-12258)

Security fixes Fix a session hijacking hole CVE-2010-2795 PHPCAS-61 callbackurl in proxy mode should be urlencoded, possible XSS CVE-2010-2796 PHPCAS-67 Bug fixes Fix warnings for SAML responses without attributes PHPCAS-59 Fix duplicate SAML debug output PHPCAS-64 Providing a new ST/PT/SA during...

Debian Security Advisory DSA 2078-1 (mapserver)

The remote host is missing an update to mapserver announced via advisory DSA 2078-1. OpenVAS Vulnerability Test $Id: deb20781.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2078-1 mapserver Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

wdb-version NSE Script

Detects vulnerabilities and gathers information such as version numbers and hardware support from VxWorks Wind DeBug agents. Wind DeBug is a SunRPC-type service that is enabled by default on many devices that use the popular VxWorks real-time embedded operating system. H.D. Moore of Metasploit ha...

Novell iPrint Client ActiveX Control ExecuteRequest debug buffer overflow

Added: 08/16/2010 BID: 42100 OSVDB: 66960 Background Novell iPrint is an application which allows users to install and manage printers. Novell iPrint installs the Novell iPrint Control ActiveX control named ienipp.ocx. Problem A buffer overflow vulnerability in ienipp.ocx allows command execution...

QuickTime Player Streaming Debug Error Logging Buffer Overflow Vulnerability

The host is running QuickTime Player and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbapplequicktimeplayerbofvuln.nasl 5263 2017-02-10 13:45:51Z teissa $ QuickTime Player Streaming Debug Error Logging Buffer Overflow Vulnerability Authors: Madhuri D Copyright:...

Fedora 13 : java-1.6.0-openjdk-1.6.0.0-42.b18.fc13 (2010-12759)

S6678385, RH551835: Fixes jvm crashes when window is resized. Produces the 'expected' behavior for full screen applications, when running the Metacity window manager. PR453, OJ100142: Fix policy evaluation to match the proprietary JDK. IcedTeaNPPlugin. RH524387: javax.net.ssl.SSLKeyException: RSA...

QuickTime < 7.6.7 QuickTimeStreaming.qtx SMIL File Debug Logging Overflow (Windows)

Versions of QuickTime earlier than 7.6.7 are potentially affected by a stack overflow in the application's error logging when debug logging is enabled. If an attacker can trick a user on the host into viewing a specially crafted movie file, he may be able to cause an application crash or even...

QuickTime < 7.6.7 QuickTimeStreaming.qtx SMIL File Debug Logging Overflow (Windows) (deprecated)

Binary data 5628.prm...

VxWorks 'debug' Port Detection

Binary data 5621.prm...

QNX 'debug' Service Detection

Binary data 5638.prm...

VxWorks WDB Debug Service Detection

A VxWorks WDB Debug Agent is running on this host. Using this service, it is possible to read or write any memory zone or execute arbitrary code on the host. An attacker can use this flaw to take complete control of the affected device. C Tenable Network Security, Inc. include"compat.inc"; if...