Ubuntu: Security Advisory (USN-1846-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1846-1: Linux kernel vulnerability

Kees Cook discovered a flaw in the Linux kernel's iSCSI subsystem. A remote unauthenticated attacker could exploit this flaw to cause a denial of service system crash or potentially gain administrative privileges...

CentOS Update for pam CESA-2013:0521 centos6

Check for the Version of pam OpenVAS Vulnerability Test CentOS Update for pam CESA-2013:0521 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Scientific Linux Security Update : xpdf on SL4.x i386/x86_64

Kees Cook discovered a flaw in the way xpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause xpdf to crash, or, potentially, execute arbitrary code when opened. CVE-2008-1693 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Debian: Security Advisory (DSA-2326-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-2326-1 pam - several

Bulletin has no description...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix several security issues, various bugs, and add an enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, whic...

Debian: Security Advisory (DSA-2164-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for shadow vulnerability USN-1065-1

Ubuntu Update for Linux kernel vulnerabilities USN-1065-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10651.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for shadow vulnerability USN-1065-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

DSA-2164-1 shadow - missing input sanitization

Bulletin has no description...

libxml2 2.6.x - XMLWriter::writeAttribute() Memory Leak Information Disclosure

libxml2 2.6.x - XMLWriter::writeAttribute Memory Leak Information Disclosure source: https://www.securityfocus.com/bid/45973/info The 'libxml2' library is prone to a local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to furth...

Linux Kernel 2.6.37 (RedHat Ubuntu 10.04) - Full-Nelson.c Local Privilege Escalation

Linux Kernel 2.6.37 RedHat Ubuntu 10.04 - Full-Nelson.c Local Privilege Escalation / Linux Kernel = 2.6.37 local privilege escalation by Dan Rosenberg @djrbliss on twitter Usage: gcc full-nelson.c -o full-nelson ./full-nelson This exploit leverages three vulnerabilities to get root, all of which...

CVE-2010-4312

The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to hijack a session via script access to a cookie...

Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite

Exploit for linux platform in category dos / poc ========================================================== Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite ========================================================== / CVE-2010-2963 Arbitrary write memory write via v4l1 compat ioctl. Kee...

Linux Kernel VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability

No description provided by source. Source: http://www.securityfocus.com/bid/44242/info / CVE-2010-2963 Arbitrary write memory write via v4l1 compat ioctl. Kees Cook [email protected] greets to drosenberg, spender, taviso / define GNUSOURCE include stdio.h include unistd.h include stdlib.h include...

Linux Kernel 2.6.36 - VIDIOCSMICROCODE IOCTL Local Memory Overwrite

Linux Kernel 2.6.36 - VIDIOCSMICROCODE IOCTL Local Memory Overwrite // source: https://www.securityfocus.com/bid/44242/info / CVE-2010-2963 Arbitrary write memory write via v4l1 compat ioctl. Kees Cook greets to drosenberg, spender, taviso / define GNUSOURCE include include include include includ...

Fedora 13 : nss_db-2.2.3-0.3.pre1.fc13 (2010-6203)

Stephane Chazelas reported that the nssdb module attempts to read a DBCONFIG file in the current directory when it is used. If the contents of the file can't be parsed properly, the copy of libdb which nssdb uses will print an error message. If nssdb is invoked from a setuid process, it may then...

Fedora 11 : nss_db-2.2-46.fc11 (2010-6331)

Stephane Chazelas reported that the nssdb module attempts to read a DBCONFIG file in the current directory when it is used. If the contents of the file can't be parsed properly, the copy of libdb which nssdb uses will print an error message. If nssdb is invoked from a setuid process, it may then...

SA-CONTRIB-2010-062 - Ogone | Ubercart payment - Access Bypass

Ogone | Ubercart payment is a payment module for Ubercart that integrates Ogone PSP gateway as a checkout method for Ubercart. The module does not always correctly verify the order status returned by the Ogone gateway, potentially allowing unpaid orders to be processed. Versions affected Ogone |...

Mandriva Update for kdebase MDKSA-2007:190 (kdebase)

Check for the Version of kdebase OpenVAS Vulnerability Test Mandriva Update for kdebase MDKSA-2007:190 kdebase Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...