987 matches found
CVE-2011-4503
The CVE-2011-4503 issue affects Broadcom Linux on the Sitecom WL-111, specifically the UPnP IGD implementation. The vulnerability allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request toward the WAN interface, tied to an “external f...
CVE-2011-4503
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
CVE-2011-4505
The UPnP IGD implementation on SpeedTouch 5x6 devices with firmware before 6.2.29 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
CVE-2011-4499
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMappi...
CVE-2011-4501
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...
CVE-2011-4506
The UPnP IGD implementation on the Thomson aka Technicolor TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
CVE-2011-4504
The CVE-2011-4504 entry concerns the UPnP IGD implementation in the Pseudo ICS UPnP software used by ZyXEL P-330W. The vulnerability arises in the UPnP AddPortMapping action processed on the WAN interface, related to an “external forwarding” issue, enabling remote attackers to establish arbitrary...
CVE-2011-4501
The CVE-2011-4501 entry describes a flaw in the UPnP IGD implementation (Edimax EdiLinux) on devices including Edimax BR-6104K (firmware <3.25), Edimax 6114Wg, Canyon-Tech CN-WF512 (fw 1.83), Canyon-Tech CN-WF514 (fw 2.08), Sitecom WL-153 (fw
Ubuntu 10.04 LTS : libvirt update (USN-1008-3)
USN-1008-1 fixed vulnerabilities in libvirt. The update for Ubuntu 10.04 LTS reverted a recent bug fix update. This update fixes the problem. We apologize for the inconvenience. It was discovered that libvirt would probe disk backing stores without consulting the defined format for the disk. A...
DEBIAN-CVE-2010-2242
Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions by leveraging IP address and source-port values, as demonstrated by copying and deleting an NFS directory tree...
libspice: Insufficient guest provided memory mappings boundaries validations
libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor aka RHEV-H or rhev-hypervisor before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings...
RedHat Update for kernel RHSA-2007:1049-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2007:1049-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Internet Gateway Device WAN Interface UPnP Access
Nessus was able to add 'port mappings' to the remote IGD router by sending a SOAP request to its external interface. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid35710; scriptversion"$Revision: 1.8 $"; scriptcvsdate"$Date: 2016/10/13 15:15:41 $";...
CVE-2008-4984
The CVE-2008-4984 issue affects scratchbox2 version 1.99.0.24, where local users can overwrite arbitrary files via a symlink attack on temporary files (e.g., /tmp/dpkg.#####.tmp, /tmp/missing_deps.#####, /tmp/sb2-pkg-chk.$tstamp.#####) related to the dpkg-checkbuilddeps and sb2-check-pkg-mappings...
Arbitrary code execution in Netrw version 127, Vim 7.2b
Summary Product : Vim -- Vi IMproved, Netrw Version : Tested with Vim 7.2b, Netrw 127 Impact : Arbitrary code execution Wherefrom: Local, possibly remote Original : http://www.rdancer.org/vulnerablevim-netrw.v5.html http://www.rdancer.org/vulnerablevim-latest.tar.bz2 Lack of sanitization...
CentOS 3 : kernel (CESA-2007:1049)
Updated kernel packages that fix several security issues and a bug in the Red Hat Enterprise Linux 3 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
RHEL 3 : kernel (RHSA-2007:1049)
Updated kernel packages that fix several security issues and a bug in the Red Hat Enterprise Linux 3 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
CVE-2002-2142
An undocumented extension for the Servlet mappings in the Servlet 2.3 specification, when upgrading to WebLogic Server and Express 7.0 Service Pack 1 from BEA WebLogic Server and Express 6.0 through 7.0.0.1, does not prepend a "/" character in certain URL patterns, which prevents the proper...
CVE-2002-2142
Technical details (affected products, versions, root cause, remediation) are not publicly provided in the connected documents; monitor for updates.
Microsoft IIS IDA/IDQ Path Disclosure Vulnerability (MS00-006) - Active Check
IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions. SPDX-FileCopyrightText: 2000 Filipe Custodio Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...