OpenSC 0.11.x - PKCS#11 Implementation Unauthorized Access

OpenSC 0.11.x - PKCS11 Implementation Unauthorized Access source: https://www.securityfocus.com/bid/33922/info OpenSC is prone to an unauthorized-access vulnerability. Attackers can exploit this issue to gain unauthorized access to private data, which may lead to other attacks. Versions prior to...

Fedora Update for odccm FEDORA-2008-0680

Check for the Version of odccm OpenVAS Vulnerability Test Fedora Update for odccm FEDORA-2008-0680 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for libxml2 FEDORA-2008-7395

Check for the Version of libxml2 OpenVAS Vulnerability Test Fedora Update for libxml2 FEDORA-2008-7395 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.1. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

XSS in the Widget Connector

I've been working with the widget connector today and reading through the code when I noticed that the media uris are not being handled securely. try this: widget:url=youtube.com/v="alert'xss' In general there is not a unified way to prevent issues like this in the widget extensions and it is up ...

SuSE Update for cups SUSE-SA:2007:058

Check for the Version of cups OpenVAS Vulnerability Test $Id: gbsuse2007058.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for cups SUSE-SA:2007:058 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Microsoft Internet Explorer Information Disclosure Vulnerability

This host is installed with Internet Explorer and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpodmsieinfodisvuln.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer Information Disclosure Vulnerability Authors: Sharath S Copyright:...

Default credentials

The UFS implementation in the kernel in Sun OpenSolaris snv29 through snv90 allows local users to cause a denial of service panic via the single posixfallocate test in the SUSv3 POSIX test suite, related to an FALLOCSP fcntl call...

Linux/x86-64 - Bind TCP (4444/TCP) + Stager + Egghunter (0x64616564) Shellcode (157 bytes)

Linux/x86-64 - Bind TCP 4444/TCP + Stager + Egghunter 0x64616564 Shellcode 157 bytes. Shellcode exploit for Linuxx86-64 platform ;Exam Assignment 3 ;implementation of egghunter ;Default egg = "deaddead" ; ;If connected the stager check of egg , if present execute the code ; ;You can send a maximu...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any...

Nokia N70/N73 Bluetooth Stack Denial Of Service

Nokia N70/N73 Bluetooth Stack OBEX Implementation Denial of Service ------------------------------------------------------------------ I. Summary Nokia N70 and N73 are two popular models from Nokia's N-series lineup of smart phones. A flaw has been found in the OBEX implementation in these two...

Code injection

The strong name SN implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for attackers to bypass Global Assembly Cache GAC and Code...

CVE-2008-5100

The strong name SN implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for attackers to bypass Global Assembly Cache GAC and Code...

CVE-2008-5100

CVE-2008-5100 concerns the strong name (SN) implementation in Microsoft .NET Framework 2.0.50727 . The description in multiple connected sources states that SN validation relies on the Public Key Token embedded in the DLL’s pathname rather than the file’s own digital signature. This design flaw c...

openSUSE 10 Security Update : kernel (kernel-5751)

This kernel update fixes various bugs and also several security issues : CVE-2008-4576: Fixed a crash in SCTP INIT-ACK, on mismatch between SCTP AUTH availability. This might be exploited remotely for a denial of service crash attack. CVE-2008-3833: The genericfilesplicewrite function in...

CVE-2008-5010

in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv103, allows remote attackers to cause a denial of service assertion failure and daemon exit via unknown DHCP requests related to the "number of offers," aka Bug ID 6713805...

kernel security update

CentOS Errata and Security Advisory CESA-2008:0957 Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 12th...

RHEL 5 : kernel (RHSA-2008:0957)

Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 12th November 2008 The original packages distributed wi...

CVE-2008-4618

The CVE-2008-4618 issue affects the Linux kernel SCTP implementation prior to 2.6.27, where a protocol violation with an invalid parameter length could trigger a panic and denial-of-service via SCTP processing paths (sctp_sf_violation_paramlen, sctp_sf_abort_violation, sctp_make_abort_violation; ...