Lucene search
K

222 matches found

Tenable Nessus
Tenable Nessus
added 2013/02/12 12:0 a.m.22 views

Scientific Linux Security Update : elinks on SL5.x, SL6.x i386/x86_64 (20130211)

It was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI. CVE-2012-4545 %NASLMINLEVEL...

5.1CVSS5.8AI score0.0191EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/02/12 12:0 a.m.22 views

RHEL 5 / 6 : elinks (RHSA-2013:0250)

An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

5.1CVSS5.8AI score0.0191EPSS
Exploits0References3
Cent OS
Cent OS
added 2013/02/11 6:29 p.m.404 views

elinks security update

CentOS Errata and Security Advisory CESA-2013:0250 An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS...

5.1CVSS6.2AI score0.0191EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/02/11 6:6 p.m.27 views

Moderate: Red Hat Security Advisory: elinks security update

An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

5.1CVSS6.2AI score0.0191EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/01/21 12:0 a.m.29 views

Fedora Update for elinks FEDORA-2013-0207

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected",...

5.1CVSS6.5AI score0.0191EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/01/21 12:0 a.m.19 views

Fedora Update for elinks FEDORA-2013-0207

Check for the Version of elinks OpenVAS Vulnerability Test Fedora Update for elinks FEDORA-2013-0207 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

5.1CVSS6.4AI score0.0191EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/01/15 12:0 a.m.22 views

Fedora Update for elinks FEDORA-2013-0265

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.1CVSS6.5AI score0.0191EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/01/15 12:0 a.m.18 views

Fedora Update for elinks FEDORA-2013-0265

Check for the Version of elinks OpenVAS Vulnerability Test Fedora Update for elinks FEDORA-2013-0265 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

5.1CVSS6.4AI score0.0191EPSS
Exploits0References2
Fedora
Fedora
added 2013/01/14 4:19 a.m.22 views

[SECURITY] Fedora 17 Update: elinks-0.12-0.29.pre5.fc17

Elinks is a text-based Web browser. Elinks does not display any images, but it does support frames, tables and most other HTML tags. Elinks' advantage over graphical browsers is its speed--Elinks starts and exits quickly and swiftly displays Web pages...

5.1CVSS1.5AI score0.0191EPSS
Exploits0
Fedora
Fedora
added 2013/01/14 4:5 a.m.26 views

[SECURITY] Fedora 18 Update: elinks-0.12-0.32.pre5.fc18

Elinks is a text-based Web browser. Elinks does not display any images, but it does support frames, tables and most other HTML tags. Elinks' advantage over graphical browsers is its speed--Elinks starts and exits quickly and swiftly displays Web pages...

5.1CVSS1.5AI score0.0191EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/01/14 12:0 a.m.25 views

Fedora 17 : elinks-0.12-0.29.pre5.fc17 (2013-0265)

do not delegate GSSAPI credentials CVE-2012-4545 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

5.1CVSS5.8AI score0.0191EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/01/14 12:0 a.m.17 views

Fedora 18 : elinks-0.12-0.32.pre5.fc18 (2013-0207)

do not delegate GSSAPI credentials CVE-2012-4545 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

5.1CVSS5.8AI score0.0191EPSS
Exploits0References3
NVD
NVD
added 2013/01/03 1:55 a.m.9 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS6.4AI score0.0191EPSS
Exploits0References8
OSV
OSV
added 2013/01/03 1:55 a.m.8 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

6.4AI score
Exploits0References8
OSV
OSV
added 2013/01/03 1:55 a.m.3 views

DEBIAN-CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS7.1AI score0.0191EPSS
Exploits0References1
Prion
Prion
added 2013/01/03 1:55 a.m.11 views

Authentication flaw

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS7AI score0.0191EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCve
added 2013/01/03 1:55 a.m.15 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS6.3AI score0.0191EPSS
Exploits0References2
Cvelist
Cvelist
added 2013/01/03 1:0 a.m.14 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

6.2AI score0.0191EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2013/01/03 1:0 a.m.14 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS5.7AI score0.0191EPSS
Exploits0
CVE
CVE
added 2013/01/03 1:0 a.m.161 views

CVE-2012-4545

CVE-2012-4545 affects ELinks 0.12 up to (but not including) 0.12pre6, where using HTTP Negotiate or GSS-Negotiate authentication delegates user credentials via GSSAPI. This can allow a remote server to authenticate as the client using delegated credentials. The CVSS score from NVD is 5.1 (Medium)...

5.1CVSS6.4AI score0.0191EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder