90 matches found
PHP 5.3.x < 5.3.29 Multiple Vulnerabilities
According to its banner, the version of PHP installed on the remote host is 5.3.x prior to 5.3.29. It is, therefore, affected by the following vulnerabilities : - A heap-based buffer overflow error exists in the file 'ext/date/lib/parseisointervals.c' related to handling DateInterval objects that...
PHP 5.4.x < 5.4.30 / 5.5.x < 5.5.14 Multiple Vulnerabilities
Binary data 8320.prm...
GLSA-201402-10 : PulseAudio: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201402-10 PulseAudio: Insecure temporary file usage The pamakesecuredir function in core-util.c does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with th...
Fedora 18 : nagios-3.5.0-5.fc18 (2013-10950)
"Build package with PIE flags 965529 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Fedora Security Advisory 2013-10950. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67293;...
Fedora 19 : nagios-3.5.0-5.fc19 (2013-10996)
"Build package with PIE flags 965529 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Fedora Security Advisory 2013-10996. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67296;...
CentOS 4 : net-snmp (CESA-2005:395)
Updated net-snmp packages that fix two security issues and various bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. SNMP Simple Network Management Protocol is a protocol used for network management. A denial of service bug was...
CVE-2013-2119 rubygem-passenger: incorrect temporary file usage
Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service prevent application start or gain privileges by pre-creating a temporary "config" file in a directory with a predictable name in /tmp/ before it is used by the gem...
Fedora 18 : crypto-utils-2.4.1-39.fc18 (2013-3253)
Addresses CVE-2012-3504 - insecure temporary file usage in genkey Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
FreeBSD : rubygem-ruby_parser -- insecure tmp file usage (e1aa3bdd-839a-4a77-8617-cca439a8f9fc)
Michael Scherer reports : This is a relatively minor tmp file usage issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and contributors Redistributi...
Fedora 18 : blender-2.63a-8.fc18 (2012-13523)
Fix insucury file usage reported as CVE-2008-1103 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Gentoo Security Advisory GLSA 201206-17 (virtualenv)
The remote host is missing updates announced in advisory GLSA 201206-17. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
GLSA-201206-17 : virtualenv: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201206-17 virtualenv: Insecure temporary file usage The virtualenv.py script in virtualenv does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the...
GLSA-201203-18 : Minitube: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201203-18 Minitube: Insecure temporary file usage Tom Pruina reported that Minitube does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges...
Gentoo Security Advisory GLSA 201201-11 (fwbuilder)
The remote host is missing updates announced in advisory GLSA 201201-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
sysstat security, bug fix, and enhancement update
7.0.2-11 - Related: 716959 fix cve-2007-3852 - sysstat insecure temporary file usage 7.0.2-10 - Resolves: 716959 fix cve-2007-3852 - sysstat insecure temporary file usage 7.0.2-9 - Related: 622557 sar interrupt count goes backward 7.0.2-8 - Resolves: 694767 iostat doesn't report statistics for...
Gentoo Security Advisory GLSA 200909-11 (gccxml)
The remote host is missing updates announced in advisory GLSA 200909-11. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 200909-10 (lmbench)
The remote host is missing updates announced in advisory GLSA 200909-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200909-09 (screenie)
The remote host is missing updates announced in advisory GLSA 200909-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
RHEL 3 / 4 / 5 : acroread (RHSA-2008:0641)
Updated acroread packages that fix various security issues are now available for Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Acrobat Reader allows users to view and pri...
RedHat Security Advisory RHSA-2009:1154
The remote host is missing updates announced in advisory RHSA-2009:1154. The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address...