Scientific Linux Security Update : glibc on SL5.x,SL6.x i386/x86_64

The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math libraries. Without these two libraries, a Linux system cannot function properly. The fix for CVE-2010-3847 introduced a regression in the way th...

CentOS Update for glibc CESA-2011:0412 centos5 x86_64

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2011:0412 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

CentOS Update for glibc CESA-2012:0393 centos6

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2012:0393 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

RedHat Update for glibc RHSA-2012:0393-01

Check for the Version of glibc OpenVAS Vulnerability Test RedHat Update for glibc RHSA-2012:0393-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

DEBIAN-CVE-2011-2485

The gdkpixbufgifimageload function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service memory consumption via a crafted GIF image file...

RedHat Update for glibc RHSA-2011:0413-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Java RMI Server Insecure Endpoint Code Execution Scanner

Detect Java RMI endpoints This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/java/serialization' class MetasploitModule 'Java RMI Server Insecure Endpoint Code Execution Scanner', 'Description' = 'Detect Jav...

glibc security and bug fix update

2.12-1.47.el62.9 - Always use another area after a failed allocation in the main arena 795328 - Remove sse3 memcpy 695812 changes 799259 2.12-1.47.el62.8 - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794815 2.12-1.47.el62.7 - Fix locking on malloc family retry paths...

HP-UX PHSS_42253 : HP-UX Dynamic Loader, Local Privilege Escalation, Denial of Service (DoS) (HPSBUX02688 SSRT100513 rev.1)

s700800 11.11 ld1 and linker tools cumulative patch : A potential security vulnerability has been identified in HP-UX dynamic loader. The vulnerability could be exploited locally to create a privilege escalation, or a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

HP-UX PHSS_42043 : HP-UX Dynamic Loader, Local Privilege Escalation, Denial of Service (DoS) (HPSBUX02688 SSRT100513 rev.1)

s700800 11.23 linker + fdp cumulative patch : A potential security vulnerability has been identified in HP-UX dynamic loader. The vulnerability could be exploited locally to create a privilege escalation, or a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

HP-UX PHSS_42040 : HP-UX Dynamic Loader, Local Privilege Escalation, Denial of Service (DoS) (HPSBUX02688 SSRT100513 rev.1)

s700800 11.31 linker + fdp cumulative patch : A potential security vulnerability has been identified in HP-UX dynamic loader. The vulnerability could be exploited locally to create a privilege escalation, or a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

glibc: ldd unexpected code execution issue

ldd in the GNU C Library aka glibc or libc6 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LDTRACELOADEDOBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion...

glibc: ldd unexpected code execution issue

ldd in the GNU C Library aka glibc or libc6 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LDTRACELOADEDOBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion...

glibc: ld.so d_tag signedness error in elf_get_dynamic_info

Integer signedness error in the elfgetdynamicinfo function in elf/dynamic-link.h in ld.so in the GNU C Library aka glibc or libc6 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value...

Directory traversal

Directory traversal vulnerability in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 aka TIA portal; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transfer Mode is...

CVE-2011-4513

Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 aka TIA portal; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allow user-assisted remote attackers to execute arbitrary code via a crafted project file,...

CVE-2011-4513

CVE-2011-4513 affects Siemens WinCC Flexible (2004–2008), WinCC V11 (TIA Portal), SIMATIC HMI panels (TP/OP/MP/Comfort/Mobile), and WinCC Runtime Advanced/Flexible Runtime. The vulnerability allows user-assisted remote attackers to execute arbitrary code via a crafted project file, related to the...

CVE-2012-0902

AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service reboot via a direct request to cgi-bin/loader...

Design/Logic Flaw

AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service reboot via a direct request to cgi-bin/loader...

glibc: ldd unexpected code execution issue

ldd in the GNU C Library aka glibc or libc6 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LDTRACELOADEDOBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion...