openSUSE Security Update : gstreamer-0_10-plugins-good (gstreamer-0_10-plugins-good-989)

Specially crafted files could cause integer overflows in the PNG decoding module of GStreamer CVE-2009-1932. if !definedfunc"nasllevel" || nasllevel = 70000 && nasllevel = 70200 && nasllevel = 80000 && nasllevel 80502 exit0; C Tenable Network Security, Inc. The descriptive text and package checks...

libtiff security update

3.8.2-7.el5.4 - Fix buffer overrun risks caused by unchecked integer overflow CVE-2009-2347 Resolves: 507725 3.8.2-7.el5.3 - Fix some more LZW decoding vulnerabilities CVE-2009-2285 Resolves: 507725 - Update upstream URL...

Microsoft Virtual PC and Virtual Server Privilege Escalation Vulnerability

Description Microsoft Virtual PC and Virtual Server are prone to a privilege-escalation vulnerability caused by an error in decoding privileged instructions. Note that this issue affects only systems that do not use hardware-assisted virtualization. Successful exploits may allow local attackers t...

Fedora Core 9 FEDORA-2009-7335 (libtiff)

The remote host is missing an update to libtiff announced via advisory FEDORA-2009-7335. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora 10 : libtiff-3.8.2-13.fc10 (2009-7358)

Fixes latest libtiff LZW decoding crash problem Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Core 11 FEDORA-2009-7417 (libtiff)

The remote host is missing an update to libtiff announced via advisory FEDORA-2009-7417. OpenVAS Vulnerability Test $Id: fcore20097417.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-7417 libtiff Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 11 FEDORA-2009-7417 (libtiff)

The remote host is missing an update to libtiff announced via advisory FEDORA-2009-7417. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora Core 10 FEDORA-2009-7358 (libtiff)

The remote host is missing an update to libtiff announced via advisory FEDORA-2009-7358. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

RedHat Security Advisory RHSA-2009:1123

The remote host is missing updates announced in advisory RHSA-2009:1123. GStreamer is a streaming media framework, based on graphs of filters which operate on media data. GStreamer Good Plug-ins is a collection of well-supported, good quality GStreamer plug-ins. Multiple integer overflow flaws,...

RedHat Security Advisory RHSA-2009:1123

The remote host is missing updates announced in advisory RHSA-2009:1123. GStreamer is a streaming media framework, based on graphs of filters which operate on media data. GStreamer Good Plug-ins is a collection of well-supported, good quality GStreamer plug-ins. Multiple integer overflow flaws,...

gstreamer security update

CentOS Errata and Security Advisory CESA-2009:1123 Updated gstreamer-plugins-good packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GStreamer is a...

Moderate: Red Hat Security Advisory: gstreamer-plugins-good security update

Updated gstreamer-plugins-good packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GStreamer is a streaming media framework, based on graphs of filters whi...

Foxit Reader JPEG2000 / JBIG Decoder Add-On < 2.0.2009.616 Multiple Vulnerabilities

The Foxit Reader application installed on the remote Windows host includes an optional JPEG2000 / JBIG Decoder add-on that is prior to version 2.0.2009.616. It is, therefore affected by multiple vulnerabilities : - A out-of-bounds read error exists in the add-on due to improper handling of a...

Microsoft .NET ViewState Detection and Decoding

Binary data 7005.pasl...

CVE-2009-1122

The WebDAV extension in Microsoft Internet Information Services IIS 5.0 on Windows 2000 SP4 does not properly decode URLs, which allows remote attackers to bypass authentication, and possibly read or create files, via a crafted HTTP request, aka "IIS 5.0 WebDAV Authentication Bypass Vulnerability...

Microsoft IIS Security Bypass Vulnerability (970483)

This host is missing a critical security update according to Microsoft Bulletin MS09-020. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Ubuntu USN-761-2 (php5)

The remote host is missing an update to php5 announced via advisory USN-761-2. OpenVAS Vulnerability Test $Id: ubuntu7612.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7612.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-761-2 php5 Authors: Thomas Reinke...

Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when the application...

CVE-2008-3869

Heap-based buffer overflow in sadmind in Sun Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted RPC request, related to improper decoding of request parameters...

Microsoft accused of downplaying IIS flaw

A security researcher from nCircle is accusing Microsoft of gamesmanship in its description of an unpatched IIS vulnerability in the way the WebDAV extension decodes a requested URL. The end result is that a successful exploit would allow a hacker to bypass authentication and gain unauthorized...