59 matches found
EUVD-1999-1064
Malware in sbrugna...
EUVD-1999-1063
Malware in sbrugna...
EUVD-2002-1052
Malware in sbrugna...
EUVD-2002-1053
Malware in sbrugna...
EUVD-2002-1051
Malware in sbrugna...
EUVD-2002-1050
Malware in sbrugna...
Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
t. hauck jana webserver 1.0/1.45/1.46 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the intended webroot. http...
T. Hauck Jana Server 1.45/1.46/2.0 MS-DOS Device Name DoS Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2704/info Versions of Jana Server are vulnerable to a denial of service attack. It is possible to remotely crash a system running Jana Server by submitting a URL request which specifies an MS-DOS devicename. A hard reboot...
T. Hauck Jana Server 1.45/1.46 Hex Encoded Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2703/info It is possible for a remote user to traverse the directories of a host running Jana Server. Submitting a specially crafted URL using hex encoded 'double dot' sequences will reveal arbitrary directories. In...
gnutls -- multiple certificate verification issues
GnuTLS project reports: A vulnerability was discovered that affects the certificate verification functions of all gnutls versions. A specially crafted certificate could bypass certificate validation checks. The vulnerability was discovered during an audit of GnuTLS for Red Hat. Suman Jana reporte...
[USN-2121-1] GnuTLS vulnerability
========================================================================== Ubuntu Security Notice USN-2121-1 February 25, 2014 gnutls26 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
USN-2121-1: GnuTLS vulnerability
Suman Jana discovered that GnuTLS incorrectly handled version 1 intermediate certificates. This resulted in them being considered to be a valid CA certificate by default, which was contrary to documented behaviour...
[BSA-093] Security Update for gnutls28
Andreas Metzler uploaded new packages for gnutls28 which fixed the following security problems: CVE-2014-1959 / DSA 2866-1 / GNUTLS-SA-2014-1 Suman Jana reported that GnuTLS, deviating from the documented behavior considers a version 1 intermediate certificate as a CA certificate by default. For...
Debian Security Advisory DSA 2866-1 (gnutls26 - certificate verification flaw)
Suman Jana reported that GnuTLS, deviating from the documented behavior, considers a version 1 intermediate certificate as a CA certificate by default. The oldstable distribution squeeze is not affected by this problem as X.509 version 1 trusted CA certificates are not allowed by default. OpenVAS...
Updated gnutls packages fix security vulnerability
Suman Jana reported a vulnerability that affects the certificate verification functions of gnutls 3.1.x and gnutls 3.2.x. A version 1 intermediate certificate will be considered as a CA certificate by default something that deviates from the documented behavior CVE-2014-1959...
Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
Jana Server 2.4.4 - httppna Denial of Service
Jana Server 2.4.4 - httppna Denial of Service / by Luigi Auriemma / include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error;...
Jana Server DoS
character in request is handled incorrectly...
Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
Exploit for unknown platform in category dos / poc ========================================================= Jana Server include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include includ...