Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2010/04/01 12:0 a.m.35 views

Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : libnss-db vulnerability (USN-922-1)

Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation. Note that Tenable Network Security has extracted the precedin...

1.9CVSS5.6AI score0.00376EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2010/03/31 6:50 p.m.55 views

USN-922-1: libnss-db vulnerability

Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation...

1.9CVSS5.4AI score0.00376EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.15 views

Debian Security Advisory DSA 1430-1 (libnss-ldap)

The remote host is missing an update to libnss-ldap announced via advisory DSA 1430-1. OpenVAS Vulnerability Test $Id: deb14301.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1430-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

4.3CVSS0.6AI score0.01164EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.38 views

Debian Security Advisory DSA 1118-1 (mozilla)

The remote host is missing an update to mozilla announced via advisory DSA 1118-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: deb11181.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1118-1 Authors: Thomas...

9.3CVSS0.8AI score0.07251EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.26 views

Debian: Security Advisory (DSA-1265-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.7AI score0.04292EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.12 views

Debian: Security Advisory (DSA-1430-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.01164EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2007/12/12 12:0 a.m.22 views

Debian DSA-1430-1 : libnss-ldap - denial of service

It was reported that a race condition exists in libnss-ldap, an NSS module for using LDAP as a naming service, which could cause denial of service attacks if applications use pthreads. This problem was spotted in the dovecot IMAP/POP server but potentially affects more programs. %NASLMINLEVEL 703...

4.3CVSS5.3AI score0.01164EPSS
Exploits1References3
Debian
Debian
added 2007/12/11 10:22 p.m.28 views

[SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1430-1 [email protected] http://www.debian.org/security/ Steve Kemp December 11, 2007 http://www.debian.org/security/faq -...

4.3CVSS6AI score0.01164EPSS
Exploits1
OSV
OSV
added 2007/12/11 12:0 a.m.15 views

DSA-1430-1 libnss-ldap - information disclosure

Bulletin has no description...

4.3CVSS6.3AI score0.01164EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2007/11/13 11:46 p.m.12 views

CVE-2007-5794

Race condition in nssldap, when used in applications that are linked against the pthread library and fork after a call to nssldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong...

4.3CVSS5.9AI score0.01164EPSS
Exploits1References3
securityvulns
securityvulns
added 2007/02/27 12:0 a.m.53 views

Mozilla libnss multiple security vulnerabilities

Buffer overflows and integer overflows in SSL2 client and server code implementation...

6.8CVSS3.8AI score0.5036EPSS
Exploits0References4Affected Software3
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.36 views

Ubuntu 4.10 / 5.04 : openldap2, libpam-ldap, libnss-ldap vulnerabilities (USN-152-1)

Andrea Barisani discovered a flaw in the SSL handling of pam-ldap and libnss-ldap. When a client connected to a slave LDAP server using SSL, the slave server did not use SSL as well when contacting the LDAP master server. This caused passwords and other confident information to be transmitted...

5CVSS5.4AI score0.02752EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.12 views

libNSS Hello Challenge Remote Heap Overflow

Binary data 2133.prm...

7.5CVSS7.3AI score0.22525EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.15 views

libNSS Hello Challenge Remote Heap Overflow

Binary data 2134.prm...

7.5CVSS7.3AI score0.22525EPSS
Exploits1References1
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.24 views

CVE-2001-1089

libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL code into an HTTP request...

8AI score0.01571EPSS
Exploits0References3
CVE
CVE
added 2002/06/25 4:0 a.m.42 views

CVE-2001-1089

Summary of CVE-2001-1089: The vulnerable component is libnss-pgsql in the nss-pgsql package (version 0.9.0 and earlier). The issue allows remote attackers to execute arbitrary SQL queries by injecting SQL code into an HTTP request, indicating a server-side input handling flaw that can affect conf...

7.5CVSS8.4AI score0.01571EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2001/09/10 4:0 a.m.13 views

CVE-2001-1089

libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL code into an HTTP request...

7.5CVSS8AI score0.01571EPSS
Exploits0References3
Rows per page
Query Builder