Lucene search
K

72 matches found

Debian
Debian
added 2013/06/18 7:52 p.m.19 views

[SECURITY] [DSA 2628-2] nss-pam-ldapd update

------------------------------------------------------------------------- Debian Security Advisory DSA-2628-2 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 18, 2013 http://www.debian.org/security/faq -...

6.8CVSS5.8AI score0.03582EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.24 views

Debian Security Advisory DSA 2628-1 (nss-pam-ldapd - buffer overflow)

Garth Mollett discovered that a file descriptor overflow issue in the use of FDSET in nss-pam-ldapd, which provides NSS and PAM modules for using LDAP as a naming service, can lead to a stack-based buffer overflow. An attacker could, under some circumstances, use this flaw to cause a process that...

6.8CVSS0.5AI score0.03582EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/06/17 12:0 a.m.19 views

Debian: Security Advisory (DSA-2628-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.03582EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.24 views

Mandriva Linux Security Advisory : nss-pam-ldapd (MDVSA-2013:106)

Updated nss-pam-ldapd packages fixes the following security vulnerability : Garth Mollett discovered that a file descriptor overflow issue in the use of FDSET in nss-pam-ldapd can lead to a stack-based buffer overflow. An attacker could, under some circumstances, use this flaw to cause a process...

6.8CVSS6.6AI score0.03582EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/03/12 12:0 a.m.18 views

CentOS Update for nss-pam-ldapd CESA-2013:0590 centos6

Check for the Version of nss-pam-ldapd OpenVAS Vulnerability Test CentOS Update for nss-pam-ldapd CESA-2013:0590 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...

6.8CVSS6.4AI score0.03582EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/03/12 12:0 a.m.15 views

CentOS Update for nss-pam-ldapd CESA-2013:0590 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS5.2AI score0.03582EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/03/10 12:0 a.m.40 views

CentOS 6 : nss-pam-ldapd (CESA-2013:0590)

Updated nss-pam-ldapd packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

6.8CVSS6.3AI score0.03582EPSS
Exploits0References3
NVD
NVD
added 2013/03/05 9:38 p.m.10 views

CVE-2013-0288

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

6.8CVSS7.7AI score0.03582EPSS
Exploits0References18
Prion
Prion
added 2013/03/05 9:38 p.m.16 views

Stack overflow

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

6.8CVSS8.4AI score0.03582EPSS
Exploits0References18Affected Software1
UbuntuCve
UbuntuCve
added 2013/03/05 9:38 p.m.23 views

CVE-2013-0288

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References2
OSV
OSV
added 2013/03/05 9:38 p.m.10 views

UBUNTU-CVE-2013-0288

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/03/05 12:0 a.m.17 views

RedHat Update for nss-pam-ldapd RHSA-2013:0590-01

Check for the Version of nss-pam-ldapd OpenVAS Vulnerability Test RedHat Update for nss-pam-ldapd RHSA-2013:0590-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.8CVSS6.4AI score0.03582EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/03/05 12:0 a.m.31 views

Fedora Update for nss-pam-ldapd FEDORA-2013-2754

Check for the Version of nss-pam-ldapd OpenVAS Vulnerability Test Fedora Update for nss-pam-ldapd FEDORA-2013-2754 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.8CVSS6.4AI score0.03582EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/03/05 12:0 a.m.21 views

RedHat Update for nss-pam-ldapd RHSA-2013:0590-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/03/05 12:0 a.m.20 views

Fedora Update for nss-pam-ldapd FEDORA-2013-2754

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/03/05 12:0 a.m.25 views

RHEL 6 : nss-pam-ldapd (RHSA-2013:0590)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2013:0590 advisory. The nss-pam-ldapd packages provide the nss-pam-ldapd daemon nslcd, which uses a directory server to lookup name service information on behalf of a...

6.8CVSS6.4AI score0.03582EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/03/05 12:0 a.m.14 views

Scientific Linux Security Update : nss-pam-ldapd on SL6.x i386/x86_64 (20130304)

An array index error, leading to a stack-based buffer overflow flaw, was found in the way nss-pam-ldapd managed open file descriptors. An attacker able to make a process have a large number of open file descriptors and perform name lookups could use this flaw to cause the process to crash or,...

6.8CVSS6.3AI score0.03582EPSS
Exploits0References2
Cent OS
Cent OS
added 2013/03/04 10:46 p.m.65 views

nss security update

CentOS Errata and Security Advisory CESA-2013:0590 Updated nss-pam-ldapd packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/03/04 9:0 p.m.9 views

nss-pam-ldapd: FD_SET array index error, leading to stack-based buffer overflow

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

6.8CVSS6.5AI score0.03582EPSS
Exploits0References4
CVE
CVE
added 2013/03/04 9:0 p.m.98 views

CVE-2013-0288

The CVE-2013-0288 issue affects nss-pam-ldapd (nslcd) prior to 0.7.18 and 0.8.x prior to 0.8.11. A name lookup performed when many file descriptors are open can trigger a FD_SET misuse that causes a stack-based buffer overflow, leading to denial of service (application crash) and potentially remo...

6.8CVSS7.7AI score0.03582EPSS
Exploits0References18Affected Software1
Rows per page
Query Builder