DSA-1503-2 kernel-source-2.4.27 - several vulnerabilities

Bulletin has no description...

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Rational ClearQuest CQ Web 7.0.0.0 allows remote attackers to inject arbitrary web script or HTML via an attachment to a defect log entry...

CVE-2007-1468

Cross-site scripting XSS vulnerability in IBM Rational ClearQuest CQ Web 7.0.0.0 allows remote attackers to inject arbitrary web script or HTML via an attachment to a defect log entry...

CVE-2007-1468

Cross-site scripting XSS vulnerability in IBM Rational ClearQuest CQ Web 7.0.0.0 allows remote attackers to inject arbitrary web script or HTML via an attachment to a defect log entry...

CVE-2006-3857

Multiple buffer overflows in IBM Informix Dynamic Server IDS before 9.40.TC6 and 10.00 before 10.00.TC3 allow remote authenticated users to execute arbitrary code via 1 the getname function, as used by a sqremview, b sqremproc, c sqremperms, d sqdistfetch, and e sqdcatalog; and the 2 SET DEBUG...

[SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Exposed clear text of domain machine == account password in debug logs log == level = 5 == CVE ID: CAN2006-1059 == == Versions: Samba Samba 3.0.21 - 3.0.21c inclusive == ==...

HP-UX PHSS_28558 : HP-UX Running Sendmail and Using Bastille Sendmail.cf, Remote Unauthorized Disclosure of Information (HPSBUX00245 SSRT3450 rev.2)

s700800 11.X Functional fix in HP-UX Bastille : HP has discovered a functional defect in Bastille B.02.00.00 which caused the sendmail privacy options not to be configured correctly if that option were chosen. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch...

HP-UX PHCO_22686 : HPSBUX0012-134 Sec. Vulnerability in top(1) (rev.1)

s700800 11.00 top1 cumulative patch : the top1 command has a security defect. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO22686. The text itself is copyright C Hewlett-Packard Development Company, L.P...

SSH Secure Shell for Servers fails to remove child process from master process group

Overview A locally exploitable privilege escalation vulnerability exists in SSH Secure Shell versions 2.0.13 - 3.2.1. Description Secure Shell for Servers, developed by SSH Communications Security, does not properly remove the child process from the master process group after non-interactive...

CVE-2000-0810

Auction Weaver (LITE) versions 1.0–1.04 suffer a form-field name validation flaw that allows remote attackers to delete arbitrary files and directories via a dot-dot path traversal. The underlying issue is improper validation of input names, enabling remote exploitation without authentication. Im...

Flash plugin write-overflow

Hello all, I'm learning more and more about plugins. I have recreated the write-overflow I found 6 months ago. The affected plugins: There are two primary sources for Flash plugins. - Macromedia provides the official version. They are NOT affected by this latest defect. - Olivier Debon provides a...

CVE-2026-6050

This CVE entry is rejected/not used and does not represent an active vulnerability.