16 matches found
RHEL 6 : crypto-utils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - crypto-utils: insecure temporary file usage in genkey CVE-2012-3504 Note that Nessus has not tested for this issue...
GLSA-201402-10 : PulseAudio: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201402-10 PulseAudio: Insecure temporary file usage The pamakesecuredir function in core-util.c does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with th...
Fedora 19 : nagios-3.5.0-5.fc19 (2013-10996)
"Build package with PIE flags 965529 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Fedora Security Advisory 2013-10996. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67296;...
Fedora 18 : crypto-utils-2.4.1-39.fc18 (2013-3253)
Addresses CVE-2012-3504 - insecure temporary file usage in genkey Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Gentoo Security Advisory GLSA 201206-17 (virtualenv)
The remote host is missing updates announced in advisory GLSA 201206-17. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
GLSA-201206-17 : virtualenv: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201206-17 virtualenv: Insecure temporary file usage The virtualenv.py script in virtualenv does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the...
GLSA-201203-18 : Minitube: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-201203-18 Minitube: Insecure temporary file usage Tom Pruina reported that Minitube does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges...
Gentoo Security Advisory GLSA 201201-11 (fwbuilder)
The remote host is missing updates announced in advisory GLSA 201201-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200909-11 (gccxml)
The remote host is missing updates announced in advisory GLSA 200909-11. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
RHEL 3 / 4 / 5 : acroread (RHSA-2008:0641)
Updated acroread packages that fix various security issues are now available for Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Acrobat Reader allows users to view and pri...
Gentoo Security Advisory GLSA 200903-18 (openswan)
The remote host is missing updates announced in advisory GLSA 200903-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200812-12 (honeyd)
The remote host is missing updates announced in advisory GLSA 200812-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-200812-13 : OpenOffice.org: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200812-13 OpenOffice.org: Multiple vulnerabilities Two heap-based buffer overflows when processing WMF files CVE-2008-2237 and EMF files CVE-2008-2238 were discovered. Dmitry E. Oboukhov also reported an insecure temporary file...
OpenOffice.org: Multiple vulnerabilities
Background OpenOffice.org is an open source office productivity suite, including word processing, spreadsheet, presentation, drawing, data charting, formula editing, and file conversion facilities. Description Two heap-based buffer overflows when processing WMF files CVE-2008-2237 and EMF files...
RHEL 4 : cvs (RHSA-2005:756)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2005:756 advisory. CVS Concurrent Version System is a version control system. An insecure temporary file usage was found in the cvsbug program. It is possible that a loc...
Fedora Core 2 : kdelibs-3.2.2-14.FC2 (2005-244)
Wed Mar 2 2005 Than Ngo 6:3.2.2-14.FC2 - Applied patch to fix DCOP DoS, CVE-2005-0396, 150090 thanks KDE security team - Wed Feb 16 2005 Than Ngo 3.2.2-13.FC2 - Applied patch to fix dcopidlng insecure temporary file usage, CVE-2005-0365, 148823 Note that Tenable Network Security has extracted the...