bind97 security update

CentOS Errata and Security Advisory CESA-2011:0845 Updated bind and bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring Syst...

Important: Red Hat Security Advisory: bind security update

Updated bind and bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

bind: Large RRSIG RRsets and Negative Caching can crash named

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

CVE-2011-1910

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

Report: Google May Face $500m Fine Over Rogue Pharma Ads

The Wall Street Journal is reporting that search giant Google is close to reaching a settlement with the U.S. Justice Department over an investigation of the company’s policy of running ads from online pharmacies that operate outside U.S. borders and in violation of U.S. law. Google has not made ...

Google Chrome 'GPU process' Multiple Code Execution Vulnerabilities - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome 'GPU process' Multiple Code Execution Vulnerabilities (Windows)

The host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromegpumultcodeexecvulnwin.nasl 7044 2017-09-01 11:50:59Z teissa $ Google Chrome 'GPU process' Multiple Code Execution Vulnerabilities Windows Authors: Madhuri D Copyright:...

Design/Logic Flaw

The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine ANGLE, as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remo...

CVE-2011-1300

The CVE-2011-1300 entry affects ANGLE’s WebGLES library (libGLESv2.dll) used by Mozilla Firefox 4.x on Windows and by Chrome’s GPU process, due to an off-by-three error in Program::getActiveUniformMaxLength. This allows remote code execution via unspecified vectors. Public sources indicate Chrome...

CVE-2011-1300

The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine ANGLE, as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remo...

Stable Channel Update

The Chrome Stable channel has been updated to 10.0.648.205 for Windows, Mac, Linux and Chrome Frame. This release contains a new version of Adobe Flash which includes a fix for a security vulnerability, as well as the security fixes listed below. Security fixes and rewards: Please see the Chromiu...

GreenPants 0.1.7 SQL Injection

Exploit Title: GreenPants 0.1.7 Multiple Vulnerabilities Date : 19 March 2011 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/greenpants/ Version : 0.1.7 Tested on : CentOS 5.2 with magicquotesgpc off Thanks to :...

CVE-2011-1554

Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid...

PT-2011-2819 · Cgit · Cgit

Name of the Vulnerable Software and Affected Versions: cgit versions prior to 0.8.3.5 Description: The issue is caused by an off-by-one error in the convert query hexchar function in html.c in cgit.cgi. This allows remote attackers to cause a denial of service infinite loop via a string composed ...

If-CMS 2.07 Pre-Auth Local File Inclusion 0day Exploit

Exploit for php platform in category web applications !/usr/bin/python INFORMATION Exploit Title: If-CMS 2.07 Pre-Auth Local File Inclusion 0day Exploit Author: TecR0c Date: 13/3/2011 Software link: http://bit.ly/hh9ZB4 Tested on: Linux bt Version: 2.07 PHP.ini Settings: gpcmagicquotes = Off impo...

N`CMS 1.1E Pre-Auth Local File Inclusion Remote Code Exploit

Exploit for php platform in category web applications !/usr/bin/python INFORMATION Exploit Title: NCMS 1.1E Pre-Auth Local File Inclusion Remote Code Exploit Date: 11/3/2011 Software link: http://bit.ly/eJAyw5 Tested on: Linux bt Version: 1.1E PHP.ini Settings: gpcmagicquotes = Off Note: The web...

N_CMS 1.1E - Local File Inclusion Remote Code

NCMS 1.1E - Local File Inclusion Remote Code !/usr/bin/python INFORMATION Exploit Title: NCMS 1.1E Pre-Auth Local File Inclusion Remote Code Exploit Date: 11/3/2011 Software link: http://bit.ly/eJAyw5 Tested on: Linux bt Version: 1.1E PHP.ini Settings: gpcmagicquotes = Off Note: The web applicati...

Wireshark Denial of Service Vulnerability - March-11 (Windows)

The host is installed with Wireshark and is prone to multiple DoS vulnerability. OpenVAS Vulnerability Test $Id: gbwiresharkdosvulnmar11win01.nasl 7015 2017-08-28 11:51:24Z teissa $ Wireshark Denial of Service Vulnerability - March-11 Windows Authors: Madhuri D Copyright: Copyright c 2011 Greenbo...

Wireshark DoS Vulnerability (Mar 2011) - Windows

Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2011-1138

Off-by-one error in the dissect6lowpaniphc function in packet-6lowpan.c in Wireshark 1.4.0 through 1.4.3 on 32-bit platforms allows remote attackers to cause a denial of service application crash via a malformed 6LoWPAN IPv6 packet...