openSUSE Security Update : fuse (openSUSE-SU-2010:0187-1)

A race condition in fusermount allows non-privileged users to umount any file system CVE-2010-0789. Note: this is a re-release of the previous update with a better patch. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fro...

MDVA-2009:104 : fuse

FUSE default setup was requiring non privileged users to be added manually to fuse group to be able to use fuse feature and this feature was not available immediatly after fuse package installation. This package updates ensure fuse is now immediatly available after package installation and for al...

Vulnerability in Network General/Net Scout product

Network General Enterprise Administrator Network General has been aquired by Net Scout: Non-privileged users can perform privileged functions by manipulating the URL. Can log on as user and using the following URL conduct administrative functions:...

CORE-2008-0123: Leopard Server Remote Path Traversal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Leopard Server Remote Path Traversal Advisory Information Title: Leopard Server Remote Path Traversal Advisory ID: CORE-2008-0123 Advisory URL:...

MOKB-09-11-2006

Title: Mac OS X fpathconf syscall denial of service Warning - wet floor! Description: Failure to handle unknown file types by the Mac OS X kernel XNU fpathconf syscall causes a kernel panic, leading to an exploitable local denial of service by non-privileged users. The bug was fixed by FreeBSD on...

imlock2006.txt

IM Lock 2006 - Insecure Registry Permission Vulnerability --------------------------------------------------------- Application: IM Lock 2006 Vendor: www.comvigo.com Corporation: Comvigo, Inc. Version: Latest: 2 March 2006 - Home Edition, Enterprise & Professional Description: IM Lock 2006...

Webroot Desktop Firewall buffer overflow

Buffer overflow on deleting application from the list of allowed programs. It's possible for non-privileged users to disable the firewall even when password protection has been enabled, by sending specific DeviceIoControl commands to the firewall driver...

ppp-off.txt

Hi, In SlackWare Linux the script /usr/bin/ppp-off writes the output of 'ps x' to /tmp/grep.tmp Since root is the user that runs ppp-off, a non-privileged user could create a link from /tmp/grep.tmp to any file ie: /etc/issue, thus when root runs the ppp-off script, the output of 'ps x' would be...

CVE-2000-0345

The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command...

CVE-2000-0345

The CVE-2000-0345 entry concerns Cisco routers’ on-line help system options. The vulnerability allows non-privileged users, without enabled access, to obtain sensitive information via the show command. The provided data (NVD) notes partial confidentiality impact with local attack vector and low b...