Null pointer dereference

The lookuplockoutpolicy function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 aka Berkeley DB or LDAP back end is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via vectors...

CVE-2011-1529

Summary : CVE-2011-1529 affects MIT Kerberos 5 (krb5) 1.8 up to 1.8.4 and 1.9 up to 1.9.1 when using the db2 (Berkeley DB) or LDAP back ends. The vulnerability allows remote attackers to cause a denial of service via a NULL pointer dereference and daemon crash, triggered by certain process_as_req...

CVE-2011-1529

The lookuplockoutpolicy function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 aka Berkeley DB or LDAP back end is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via vectors...

[SECURITY] Fedora 16 Update: awstats-7.0-5.fc16

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

CVE-2011-1529

The lookuplockoutpolicy function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 aka Berkeley DB or LDAP back end is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via vectors...

Mozilla Products Browser Engine Multiple Unspecified Vulnerabilities - Mac OS X

Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-1223-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Server Running Enterprise Manager reboots repeatedly

Challenge After installing Veeam Backup Enterprise Manager, after rebooting the machine repeatedly reboots. When Veeam Enterprise Manager is installed with a remote DB, and the installer is run with different credentials than what is specified during the install, the wrong credentials will get...

Google Chrome < 14.0.835.202 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 14.0.835.202. It therefore is potentially affected by the following vulnerabilities : - Use-after-free errors exist that are related to text line box handling and the v8 JavaScript engine bindings. CVE-2011-2876,...

WordPress Redirection 2.2.9 Persistent Cross Site Scripting

Title: Wordpress Redirection Plugin alert1 to place your XSS inside the blog backend. ----------------------- Fix ----------------------- After contacting the writer of this plugin, he rolled out a new version. Version 2.2.10 is not affected by these XSS issues. More information can be seen on...

Mozilla Products Browser Engine Multiple Unspecified Vulnerabilities (Windows)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtsbrowserenginemultvulnwin.nasl 7044 2017-09-01 11:50:59Z teissa $ Mozilla Products Browser Engine Multiple Unspecified Vulnerabilities Windows...

Mozilla Thunderbird < 7.0 Multiple Vulnerabilities

Binary data 6029.prm...

FreeBSD-SA-11:04.compress

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-11:04.compress Security Advisory The FreeBSD Project Topic: Errors handling corrupt compress file in compress1 and gzip1 Category: core Module: compress Announced...

Traq 2.2 - Multiple SQL Injections / Cross-Site Scripting

source: https://www.securityfocus.com/bid/49835/info Traq is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication...

Debian DSA-2311-1 : openjdk-6 - several vulnerabilities

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java SE platform. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-0862 Integer overflow errors in the JPEG and font parser allow untrusted code including applets to...

FreeBSD -- errors handling corrupt compress file in compress(1) and gzip(1)

Problem Description: The code used to decompress a file created by compress1 does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted fi...

Apache Tomcat digest authentication vulnerabilities

Multiple implementation errors make authentication vulnerable to different attacks...

pango security update

1.14.9.8.0.1.el57.3 - Bump release 1.14.9.8.el51.3 - Prevent buffer overflow errors in harfbuzz module CVE-2011-3193 - Resolves: 737819...

Ubuntu Update for linux-fsl-imx51 USN-1204-1

Ubuntu Update for Linux kernel vulnerabilities USN-1204-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12041.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-fsl-imx51 USN-1204-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

Ubuntu Update for linux-ti-omap4 USN-1202-1

Ubuntu Update for Linux kernel vulnerabilities USN-1202-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12021.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-ti-omap4 USN-1202-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.n...