1631 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-0183
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the nsCycleCollector::MarkRoots function in Mozilla Firefox 3.5.x before 3.5.10 and SeaMonkey before 2.0.5 allows remote attacke...
Linux Distros Unpatched Vulnerability : CVE-2011-1145
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SQLDriverConnect function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the...
Linux Distros Unpatched Vulnerability : CVE-2011-4151
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The krb5db2lockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4, when the db2 aka Berkeley DB back end is used,...
Linux Distros Unpatched Vulnerability : CVE-2010-1104
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x before 2.11.6, and 2.12.x before 2.12.3...
Linux Distros Unpatched Vulnerability : CVE-2011-5094
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Network Security Services NSS 3.x, with certain settings of the SSLENABLERENEGOTIATION option, does not properly restrict client-initiated renegotiation...
Linux Distros Unpatched Vulnerability : CVE-2010-1197
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both Content-Disposition:...
Linux Distros Unpatched Vulnerability : CVE-2011-4922
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive...
Linux Distros Unpatched Vulnerability : CVE-2011-0778
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via...
Linux Distros Unpatched Vulnerability : CVE-2010-3771
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle injection of an ISINDEX element into an about:blank...
Linux Distros Unpatched Vulnerability : CVE-2011-4028
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a...
Linux Distros Unpatched Vulnerability : CVE-2010-0743
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi- target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise...
Linux Distros Unpatched Vulnerability : CVE-2011-2709
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code...
Linux Distros Unpatched Vulnerability : CVE-2011-1657
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 ZipArchive::addGlob and 2 ZipArchive::addPattern functions in ext/zip/phpzip.c in PHP 5.3.6 allow context-dependent attackers to cause a denial of service...
Linux Distros Unpatched Vulnerability : CVE-2005-2541
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tar does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges. CVE-2005-2541 No...
Linux Distros Unpatched Vulnerability : CVE-2010-2253
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or...
Linux Distros Unpatched Vulnerability : CVE-2011-1947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a 1 STARTTLS or 2 STLS request, which allows remote servers to cause a denial...
Linux Distros Unpatched Vulnerability : CVE-2011-0055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12,...
Linux Distros Unpatched Vulnerability : CVE-2010-1585
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The nsIScriptableUnescapeHTML.parseFragment method in the ParanoidFragmentSink protection mechanism in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14,...
Linux Distros Unpatched Vulnerability : CVE-2007-4990
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The swapchar2b function in X.Org X Font Server xfs before 1.0.5 allows context-dependent attackers to execute arbitrary code via 1 QueryXBitmaps and 2...
Linux Distros Unpatched Vulnerability : CVE-2011-1554
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service...