3627 matches found
Mandriva Update for wireshark MDVSA-2008:1 (wireshark)
Check for the Version of wireshark OpenVAS Vulnerability Test Mandriva Update for wireshark MDVSA-2008:1 wireshark Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CVE-2009-0751
Yaws before 1.80 allows remote attackers to cause a denial of service memory consumption and crash via a request with a large number of headers...
Advisory for Oracle CPU October 2008 - APEX Flows excessive privileges
Advisory for Oracle CPU October 2008 - APEX FLOWS excessive privileges ====================================================================== See http://www.petefinnigan.com/AdvisoryCPUOct2008.htm for details Description ----------- Oracle Appication Express APEX is a rapid development tool for...
Design/Logic Flaw
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of service stack consumption and crash via an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during validation of an XML file...
Apache Httpd < 2.0.64 : mod_proxy_http DoS
A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. A remote attacker could cause a denial of service or high memory usage...
Important: kernel security and bug fix update
2.6.9-67.0.1.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 2.6.9-67.0.1 -kernel ieee80211 off-by-two integer underflow...
MS Internet Explorer (inetconn.dll) Stack Overflow Crash
No description provided by source. DEFAULT BASEURL= InternetShortcut...
CVE-2007-5030
Multiple integer overflows in Dibbler 0.6.0 allow remote attackers to cause a denial of service daemon crash via packets containing options with large lengths, which trigger attempts at excessive memory allocation, as demonstrated by 1 the TSrvMsg constructor in SrvMessages/SrvMsg.cpp; the 2...
CVE-2007-5030
Multiple integer overflows in Dibbler 0.6.0 allow remote attackers to cause a denial of service daemon crash via packets containing options with large lengths, which trigger attempts at excessive memory allocation, as demonstrated by 1 the TSrvMsg constructor in SrvMessages/SrvMsg.cpp; the 2...
CVE-2007-5030
Multiple integer overflows in Dibbler 0.6.0 allow remote attackers to cause a denial of service daemon crash via packets containing options with large lengths, which trigger attempts at excessive memory allocation, as demonstrated by 1 the TSrvMsg constructor in SrvMessages/SrvMsg.cpp; the 2...
MDKA-2007:089 : proftpd
A bug in ProFTPD, when run on an IPv6-capable host, causes ProFTPD to generate an excessive number of error messages to syslog. As well, LDAP TLS support was incorrectly setup during compilation and as a result LDAP TLS support was disabled. The updated packages correct these issues. %NASLMINLEVE...
Mandrake Linux Security Advisory : wireshark (MDKSA-2007:145)
A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or exhaustion of system memory. This updated provides wireshark 0.99.6 which is not vulnerable to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
Novell NetWare NFS denial of service vulnerability
Overview The Novell NetWare NFS mount daemon contains a denial of service vulnerability. Description Network File System NFS is an ONC RPC based file and print sharing protocol. Novell Netware includes support for the NFS protocol.From Novell Support Document 3008097: If an NFS client attempts a...
Novell SecureLogin < 6.0.106 Multiple Vulnerabilities
The version of Novell SecureLogin installed on the remote host is earlier than 6.0.106. Such versions reportedly grant a user excessive permissions to their own attributes in an Active Directory AD environment. There is also a security issue with AD password change. Note that Novell strongly...
Sami HTTP Server 2.0.1 (HTTP 404 - Object not found) DoS Exploit
No description provided by source. !/usr/bin/env python import socket print "-----------------------------------------------------------------------" print "Sami HTTP Server HTTP 404 - Object not found Denial of Service" print "url: http://www.karjasoft.com" print "author: shinnai" print "mail:...
CVE-2006-4333
The SSCOP dissector in Wireshark formerly Ethereal before 0.99.3 allows remote attackers to cause a denial of service resource consumption via malformed packets that cause the Q.2391 dissector to use excessive memory...
CVE-2006-4333
The SSCOP dissector in Wireshark formerly Ethereal before 0.99.3 allows remote attackers to cause a denial of service resource consumption via malformed packets that cause the Q.2391 dissector to use excessive memory...
CVE-2006-4333
The SSCOP dissector in Wireshark formerly Ethereal before 0.99.3 allows remote attackers to cause a denial of service resource consumption via malformed packets that cause the Q.2391 dissector to use excessive memory...
CVE-2006-1672
The installation of Cisco Transport Controller CTC for Cisco Optical Networking System ONS 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which allows remote attackers to execute...
CVE-2006-1285
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information...