5 matches found
Fedora 42 : libinput (2025-deb3a02c42)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-deb3a02c42 advisory. libinput 1.28.903 - fixes key events accidentally printed and thus logged to the system log if debug logs were enabled at the compositor level. Only affects...
glance-store: Glance Store access key logged in DEBUG log level
A vulnerability was found in python-glance-store. The issue occurs when the package logs the accesskey for the glance-store when the DEBUG log level is enabled...
xnio: org.xnio.StreamConnection.notifyReadClosed log to debug instead of stderr
A flaw was found in XNIO, specifically in the notifyReadClosed method. The issue revealed this method was logging a message to another expected end. This flaw allows an attacker to send flawed requests to a server, possibly causing log contention-related performance concerns or an unwanted disk...
ngIRCd <= 0.8.2 Remote Format String Exploit
No description provided by source. / ngircdfsexp.c ngIRCd = 0.8.2 remote format string exploit Note: To obtain a successful exploitation, we need that ngIRCd has been compiled with IDENT, logging to SYSLOG and DEBUG enabled. Original Reference: http://www.nosystem.com.ar/advisories/advisory-11.tx...
ngIRCd 0.8.2 - Remote Format String
/ ngircdfsexp.c ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET address from 0x0806b000 + offset -l targets list root@servidor:/home/coki/audit...