9971 matches found
PT-2007-6590 · Cisco · Cisco Asa +1
Name of the Vulnerable Software and Affected Versions: Cisco PIX and ASA appliances versions 7.1 through 7.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a device reload, via crafted packets. This can occur during the processing of Media Gateway Contro...
PT-2007-6589 · Cisco · Cisco Asa +2
Name of the Vulnerable Software and Affected Versions: Cisco PIX and ASA appliances versions 7.0 through 8.0 Cisco Firewall Services Module FWSM version 3.15 and earlier Description: The issue allows remote attackers to cause a denial of service, resulting in a device reload, via crafted packets...
openSUSE 10 Security Update : heartbeat (heartbeat-2139)
This update fixes both a local and a remote denial of service attack within heartbeat, as well as numerous other bugs in the messaging and membership layer, GUI, Cluster Resource Manager, Local Resource Manager and Resource Agents. CVE-2006-3815,CVE-2006-3121 %NASLMINLEVEL 70300 C Tenable Network...
Datagram Transport Layer Security Detection
The remote service is encrypted using Datagram Transport Layer Security DTLS, which provides communications privacy for datagram protocols. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid27057; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate"...
OpenSSL: Multiple vulnerabilities
Background OpenSSL is an implementation of the Secure Socket Layer and Transport Layer Security protocols. Description Moritz Jodeit reported an off-by-one error in the SSLgetsharedciphers function, resulting from an incomplete fix of CVE-2006-3738. A flaw has also been reported in the...
DEBIAN-CVE-2007-5034
ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy ...
SecurityReporter < 4.6.3p1 Multiple Vulnerabilities
The 'file.cgi' script included with the version of SecurityReporter installed on the remote host fails to sanitize input to the 'name' parameter before returning the contents of the specified file and supports bypassing authentication using specially crafted arguments. An unauthenticated, remote...
RHEL 4 : cyrus-sasl (RHSA-2007:0795)
An updated cyrus-sasl package that addresses a security issue and fixes various other bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus implementation...
Moderate: Red Hat Security Advisory: cyrus-sasl security update
Updated cyrus-sasl packages that correct a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple...
CVE-2007-4629
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
Buffer overflow
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
DEBIAN-CVE-2007-4629
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
CVE-2007-4629
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
CVE-2007-4629
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
CVE-2007-4629
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name...
[SECURITY] Fedora Core 6 Update: cups-1.2.12-4.fc6
The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...
CVE-2007-4308
The 1 aaccfgopen and 2 aaccompatioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges...
Path traversal
The 1 aaccfgopen and 2 aaccompatioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges...
CVE-2007-4308
The 1 aaccfgopen and 2 aaccompatioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges...
CVE-2007-4308
CVE-2007-4308 affects the Linux kernel’s SCSI aacraid driver, specifically the functions aac_cfg_open and aac_compat_ioctl . The advisory reports that these ioctl handlers did not perform permission checks, enabling a local user to cause a denial of service or potentially gain privileges. Affecte...