LSrunasE and Supercrypt cryptogoraphic vulnerabilities

Cryptography is implemented in insecure way...

SOL8331 - OpenSSL FIPS Object Module 1.1 vulnerability - CVE-2007-5502

The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does not perform auto-seeding during the FIPS self-test, which generates random data that is more predictable than expected and makes it easier for attackers to bypass protection mechanisms that rely on the randomness. Information...

Debian Security Advisory DSA 1210-1 (mozilla-firefox)

The remote host is missing an update to mozilla-firefox announced via advisory DSA 1210-1. Several security related problems have been discovered in Mozilla and derived products such as Mozilla Firefox. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:...

Debian Security Advisory DSA 1183-1 (kernel-source-2.4.27)

The remote host is missing an update to kernel-source-2.4.27 announced via advisory DSA 1183-1. OpenVAS Vulnerability Test $Id: deb11831.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1183-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-1183-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2008-0294

Unspecified vulnerability in the seat-locking implementation in FreeSeat before 1.1.5d allows attackers to book a seat more than once via unspecified vectors...

Update Protection against IBM Lotus Domino IMAP Server Buffer Overflow

IBM Lotus Domino Server is a collaboration software that provides mail, messaging, calendaring and scheduling capabilities across multiple OS platforms. The product implements numerous services based on open standards, including SMTP, IMAP, and POP3. Lotus Notes is the client implementation of th...

SuSE 10 Security Update : mutt (ZYPP Patch Number 3752)

This update of mutt fixes a vulnerability in the APOP implementation that allows an active attacker to guess three bytes of the password. CVE-2007-1558 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

squids ICAP implementation lacks a defer check when reading from ICAP server

squids ICAP implementation does not check mem-store size before reading from an ICAP-server. If the user does not confirm browsers download-message-box, squid keeps on reading data from the ICAP server into the memory store, whilst no more data can be delivered to the client. Thus the memory stor...

CVE-2007-5502

The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does not perform auto-seeding during the FIPS self-test, which generates random data that is more predictable than expected and makes it easier for attackers to bypass protection mechanisms that rely on the randomness...

CVE-2007-6097

Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorrectly accepted."...

Design/Logic Flaw

Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorrectly accepted."...

CVE-2007-6093

The SRTP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service kernel crash via an RTCP index that is "much more than expected."...

CVE-2007-6097

Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorrectly accepted."...

Novell Client for Windows NWFILTER.SYS驱动本地权限提升漏洞

BUGTRAQ ID: 26420 CVECAN ID: CVE-2007-5667 Novell Client是允许NetWare连接到Windows的工作站软件。 Novell Client在Windows系统上的驱动实现上存在漏洞，本地攻击者可能利用此漏洞提升自己的权限。 如果在基于Windows的操作系统上安装了Novell...

Important: Red Hat Security Advisory: tetex security update

Updated tetex packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having important security impact by the Red Hat Security Response Team. TeTeX is an implementation of TeX. TeX takes a text file and a set of formatting command...

Miranda IM多个远程栈溢出漏洞

BUGTRAQ ID: 26115 CVECAN ID: CVE-2007-5542,CVE-2007-5543 Miranda IM是Microsoft Windows平台上使用的开源多协议即时消息客户端。 Miranda IM没有正确地实现雅虎通协议，如果向客户端发送了畸形的雅虎通报文的话，就可以触发栈溢出，导致执行任意指令。 Miranda Miranda IM 0.7 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://sourceforge.net/project/showfiles.php?groupid=94142...

SuSE Security Update: Kernel Update for SUSE Linux 10.1 (kernel-4193)

This kernel update brings the kernel to the one shipped with SLES 10 Service Pack 1 and also fixes the following security problems: - CVE-2007-2242: The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers IPV6RTHDRTYPE0 that create network...

openSUSE 10 Security Update : kernel (kernel-2397)

This kernel update fixes the following security problems : - CVE-2006-4145: A bug within the UDF filesystem that caused machine hangs when truncating files on the filesystem was fixed. 186226 - A potential crash when receiving IPX packets was fixed. This problem is thought not to be exploitable...

openSUSE 10 Security Update : mutt (mutt-3702)

This update of mutt fixes a vulnerability in the APOP implementation that allows an active attacker to guess three bytes of the password. CVE-2007-1558 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...