Authentication flaw

Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv01 through snv82 and snv111 through snv117, when a Cassini GigaSwift Ethernet Adapter aka CE interface is used, allows remote attackers to cause a denial of service panic via vectors involving jumbo...

CVE-2009-2136

Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv01 through snv82 and snv111 through snv117, when a Cassini GigaSwift Ethernet Adapter aka CE interface is used, allows remote attackers to cause a denial of service panic via vectors involving jumbo...

CVE-2009-2136

CVE-2009-2136 affects Sun Solaris 10 and OpenSolaris (various snv builds) when the Cassini GigaSwift Ethernet Adapter interface is used. The issue is an unspecified vulnerability in the TCP/IP networking stack that allows a remote attacker to cause a denial of service (panic) via vectors involvin...

Asterisk IAX2 - Attacked IAX Fuzzer Resource Exhaustion (Denial of Service)

!/usr/bin/perl -w udp IAX protocol fuzzer Created: Blake Cornell Exploits found with this code can be found at http://www.securityscraper.com/ Released under the VoIPER project Do not hesitate to show enthusiasm and support and help develop this further. use strict; use IO::Socket; use...

RedHat Update for kernel RHSA-2007:0993-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2007:0993-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

RedHat Update for kernel RHSA-2007:1104-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2007:1104-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

CentOS Update for kernel CESA-2007:1104 centos4 x86_64

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2007:1104 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

The links panel can allow cross-site scripting – Opera Security Advisories

The links panel can allow cross-site scripting – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Highly Severe Problem Description The links panel shows links in all frames on the current page, including links with JavaScript URLs. When a page is held in a frame, the script is...

The links panel can allow cross-site scripting

The links panel shows links in all frames on the current page, including links with JavaScript URLs. When a page is held in a frame, the script is incorrectly executed on the outermost page, not the page where the URL was located. This can be used to execute scripts in the context of an unrelated...

[SECURITY] Fedora 8 Update: lynx-2.8.6-12.fc8

Lynx is a text-based Web browser. Lynx does not display any images, but it does support frames, tables, and most other HTML tags. One advantage Lynx has over graphical browsers is speed; Lynx starts and exits quickly and swiftly displays webpages...

CVE-2008-5245

CVE-2008-5245 affects xine-lib prior to 1.1.15. The issue is described as a potential buffer overflow related to V4L video frame preallocation in open_video_capture_device (src/input/input_v4l.c), with unknown impact in the initial CVE description. Related advisories (Gentoo GLSA 201006-04, SUSE ...

FreeBSD : opera -- multiple vulnerabilities (0e30e802-a9db-11dd-93a2-000bcdf0a03b)

Opera reports : When certain parameters are passed to Opera's History Search, they can cause content not to be correctly sanitized. This can allow scripts to be injected into the History Search results page. Such scripts can then run with elevated privileges and interact with Opera's configuratio...

CVE-2008-4441

The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service reboot or hang-up via a malformed...

CVE-2008-4441

The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service reboot or hang-up via a malformed...

Marvell Driver Malformed Association Request Vulnerability

Title: ------ Marvell Driver Malformed Association Request Vulnerability Summary: -------- The wireless drivers in some Wi-Fi access points such as the MARVELL-based Linksys WAP4400N do not correctly parse some malformed 802.11 frames. Assigned CVE: ------------- CVE-2008-4441 Details: -------- T...

CVE-2008-4198

CVE-2008-4198 affects Opera before 9.52. When an HTTP page that loads an HTTPS page in a frame is rendered, Opera shows a padlock security indicator and a dialog for a secure connection, which could mislead users into unsafe actions on the HTTP page. Connected advisories confirm this as a frame/s...

CVE-2008-4063

CVE-2008-4063 affects Mozilla Firefox 3.x up to 3.0.2. The issue involves memory corruption in the layout engine via multiple vectors: (1) this==0 in nsContentList::Item, (2) Hindi/Indic IME interaction with the g key, and (3) inline frame protection when SortByContentOrder is invoked. Impact is ...

Mozilla crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the layout engine and 1 a zero value of the "this" variable in the...

CVE-2008-4063

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the layout engine and 1 a zero value of the "this" variable in the...

CVE-2008-4135

Symbian OS S60 3rd edition on the Nokia E90 Communicator 07.40.1.2 Ra-6 and Nseries N82 allows remote attackers to cause a denial of service device crash via multiple deauthentication DeAuth frames...