10046 matches found
Square git-fastclone Remote Code Execution Vulnerability
Square git-fastclone is a git clone. A remote security vulnerability exists in Square git-fastclone, which could be exploited by an attacker to submit a special request to execute arbitrary code...
Vulnerabilities in the distributed Git version control system, which allow a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The multiple vulnerabilities of the distributed Git version control system are related to code errors. Exploitation of these vulnerabilities could allow a malicious actor, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...
Oracle: Security Advisory (ELSA-2015-2515)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
git19-git security update
1.9.4-3.1 - fix arbitrary code execution via crafted URLs Resolves: 1273889 1.9.4-3 - fix CVE-2014-9390 Resolves: rhbz1220552...
Source Control Management (SCM) Files/Folders Accessible (HTTP)
The script attempts to identify files/folders of a SCM accessible at the webserver. SPDX-FileCopyrightText: 2016 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...
openSUSE Security Update : cgit (openSUSE-2016-86)
This update to cgit 0.12 fixes the following issues : - CVE-2016-1899: Reflected Cross Site Scripting and Header Injection in Mimetype Query String - CVE-2016-1900: Stored Cross Site Scripting and Header Injection in Filename Parameter - CVE-2016-1901: Integer Overflow resulting in Buffer Overflo...
[SECURITY] Fedora 23 Update: cgit-0.12-1.fc23
Cgit is a fast web interface for git. It uses caching to increase performa nce...
[SECURITY] Fedora 22 Update: cgit-0.12-1.fc22
Cgit is a fast web interface for git. It uses caching to increase performa nce...
Wireshark - dissect_nhdr_extopt Stack Based Buffer Overflow
Exploit for multiple platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=696 The following crash due to a stack-based buffer overflow can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$...
Wireshark - dissect_ber_constrained_bitstring Heap Out-of-Bounds Read
Source: https://code.google.com/p/google-security-research/issues/detail?id=659 The following crash due to a heap-based out-of-bounds read can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$ ./tshark -nVxr /path/to/file": --- cut ---...
DEBIAN-CVE-2016-1900
CRLF injection vulnerability in the cgitprinthttpheaders function in ui-shared.c in CGit before 0.12 allows remote attackers with permission to write to a repository to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting XSS attacks via newline...
UBUNTU-CVE-2016-1900
CRLF injection vulnerability in the cgitprinthttpheaders function in ui-shared.c in CGit before 0.12 allows remote attackers with permission to write to a repository to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting XSS attacks via newline...
AVM FRITZ!Box 6.30 - Remote Buffer Overflow
AVM FRITZ!Box 6.30 - Remote Buffer Overflow Advisory: AVM FRITZ!Box: Remote Code Execution via Buffer Overflow RedTeam Pentesting discovered that several models of the AVM FRITZ!Box are vulnerable to a stack-based buffer overflow, which allows attackers to execute arbitrary code on the device...
USN-2835-1 git vulnerability | Cloud Foundry
USN-2835-1 git vulnerability Medium Vendor git Versions Affected Ubuntu 14.04 Description Blake Burkhart discovered that the Git git-remote-ext helper incorrectly handled recursive clones of git repositories. A remote attacker could possibly use this issue to execute arbitrary code by injecting...
Debian DSA-3435-1 : git - security update
Blake Burkhart discovered that the Git git-remote-ext helper incorrectly handled recursive clones of git repositories. A remote attacker could possibly use this issue to execute arbitary code by injecting commands via crafted URLs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
[SECURITY] [DSA 3435-1] git security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3435-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi GCS January 05, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3435-1] git security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3435-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi GCS January 05, 2016 https://www.debian.org/security/faq -...
DSA-3435-1 git - security update
Bulletin has no description...
Apple Xcode < 7.2 Multiple Vulnerabilities (Mac OS X)
The version of Apple Xcode installed on the remote Mac OS X host is prior to 7.2. It is, therefore, affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist due to a flaw in the otools component that is triggered when handling Mach-O files. A remote attacker c...
Debian Security Advisory DSA 3435-1 (git - security update)
Blake Burkhart discovered that the Git git-remote-ext helper incorrectly handled recursive clones of git repositories. A remote attacker could possibly use this issue to execute arbitrary code by injecting commands via crafted URLs. OpenVAS Vulnerability Test $Id: deb3435.nasl 6608 2017-07-07...