4159 matches found
DSA-1974-1 gzip - arbitrary code execution
Bulletin has no description...
MIT Kerberos5 Multiple Integer Underflow Vulnerabilities
MIT Kerberos5 is prone to multiple integer underflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
SuSE 11 Security Update : Kerberos 5 (SAT Patch Number 1796)
Specially crafted AES and RC4 packets could allow unauthenticated remote attackers to trigger an integer underflow that leads to heap memory corruption CVE-2009-4212. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
openSUSE Security Update : krb5 (krb5-1792)
Specially crafted ticket requests could crash the kerberos server CVE-2009-3295. Specially crafted AES and RC4 packets could allow unauthenticated remote attackers to trigger an integer underflow that leads to heap memory corruption CVE-2009-4212. %NASLMINLEVEL 70300 C Tenable Network Security,...
CentOS Update for krb5-devel CESA-2010:0029 centos3 i386
Check for the Version of krb5-devel OpenVAS Vulnerability Test CentOS Update for krb5-devel CESA-2010:0029 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
CentOS Update for krb5-devel CESA-2010:0029 centos3 x86_64
Check for the Version of krb5-devel OpenVAS Vulnerability Test CentOS Update for krb5-devel CESA-2010:0029 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...
CentOS Update for krb5-devel CESA-2010:0029 centos3 i386
Check for the Version of krb5-devel OpenVAS Vulnerability Test CentOS Update for krb5-devel CESA-2010:0029 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
CentOS Update for krb5-devel CESA-2010:0029 centos4 x86_64
Check for the Version of krb5-devel OpenVAS Vulnerability Test CentOS Update for krb5-devel CESA-2010:0029 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...
MITKRB5-SA-2009-004 [CVE-2009-4212] integer underflow in AES and RC4 decryption
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2009-004 MIT krb5 Security Advisory 2009-004 Original release: 2010-01-12 Topic: integer underflow in AES and RC4 decryption CVE-2009-4212 integer underflow in AES and RC4 decryption CVSSv2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:...
CVE-2009-4212
Multiple integer underflows in the 1 AES and 2 RC4 decryption functionality in the crypto library in MIT Kerberos 5 aka krb5 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by providing ciphertext with a...
CVE-2009-4212
CVE-2009-4212 affects MIT Kerberos 5 (krb5) crypto library, impacting the AES and RC4 decryption paths. Versions 1.3–1.6.3 and 1.7 before 1.7.1 are vulnerable to multiple integer underflows when processing ciphertext that is too short to be valid. This can cause a daemon crash (DoS) and, in some ...
krb5 security update
CentOS Errata and Security Advisory CESA-2010:0029 Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5, and Red Hat Enterprise Linux 4.7, 5.2, and 5.3 Extended Update Support. This update has been rated as having critical security...
CentOS 3 / 4 / 5 : krb5 (CESA-2010:0029)
Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5, and Red Hat Enterprise Linux 4.7, 5.2, and 5.3 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos...
RHEL 3 / 4 / 5 : krb5 (RHSA-2010:0029)
Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5, and Red Hat Enterprise Linux 4.7, 5.2, and 5.3 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos...
[SECURITY] [DSA-1969-1] New krb5 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1969-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 12, 2010 http://www.debian.org/security/faq -...
Critical: Red Hat Security Advisory: krb5 security update
Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5, and Red Hat Enterprise Linux 4.7, 5.2, and 5.3 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos...
krb: KDC integer overflows in AES and RC4 decryption routines (MITKRB5-SA-2009-004)
Multiple integer underflows in the 1 AES and 2 RC4 decryption functionality in the crypto library in MIT Kerberos 5 aka krb5 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by providing ciphertext with a...
WebSphere 7.05 APR-util apr_strmatch_precompile 导致整形下溢漏洞
No description provided by source...
Mandriva Security Advisory MDVSA-2009:319 (xine-lib)
The remote host is missing an update to xine-lib announced via advisory MDVSA-2009:319. OpenVAS Vulnerability Test $Id: mdksa2009319.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:319 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...
Fedora Core 10 FEDORA-2009-11488 (qt)
The remote host is missing an update to qt announced via advisory FEDORA-2009-11488. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...