329 matches found
PHPRecipeBook <= 2.35 (g_rb_basedir) Remote File Include Exploit
No description provided by source. !/usr/bin/perl PHPRecipeBook 2.36 Class: Remote File Include Vulnerability Date: 2006/10/16 Remote: Yes Type: Highly critical Vendor: http://phprecipebook.sourceforge.net/...
nginx 1.5.10 SPDY Memory Corruption
According to the self-reported version in the server response header, the installed nginx version is 1.5.10. It is, therefore, affected by a memory corruption vulnerability. A flaw exists with the SPDY module implementation, where worker process memory could be corrupted via a specially crafted...
cups security update
1:1.4.2-35:.1 - Applied patch to fix cupsd memory corruption vulnerability CVE-2010-2941, STR 3648, bug 624438...
JDK: XML parsing Denial-Of-Service (6845701)
Previously, a denial-of-service flaw was found in Java which allowed the creation of an inifinte loop in XML headers that would consume all CPU resources. This issue was patched and Java is no longer vulnerable to a denial-of-service flaw due to the initiation of an infinte loop by means of XML...
Important: cups security update
1.1.22-0.rc1.9.20.2:.5 - Prevented invalid memory accesses when a class and its singleton printer are timed out in the same sweep CVE-2008-0597, bug 433828. - Back-ported mimeDeleteType from 1.2.x CVE-2008-0596, bug 433828. 1.1.22-0.rc1.9.20.2:.4 - Prevent double-free when a browsed class has the...
PHPRecipeBook <= 2.35 (g_rb_basedir) Remote File Include Exploit
No description provided by source. !/usr/bin/perl PHPRecipeBook 2.36 Class: Remote File Include Vulnerability Date: 2006/10/16 Remote: Yes Type: Highly critical Vendor: http://phprecipebook.sourceforge.net/...
Mandrake Linux Security Advisory : shadow-utils (MDKSA-2003:026)
The shadow-utils package contains the tool useradd, which is used to create or update new user information. When useradd creates an account, it would create it with improper permissions; instead of having it owned by the group mail, it would be owned by the user's primary group. If this is a shar...
Mandrake Linux Security Advisory : cdrecord (MDKSA-2003:058-1)
A vulnerability in cdrecord was discovered that can be used to obtain root access because Mandrake Linux ships with the cdrecord binary suid root and sgid cdwriter. Updated packages are provided that fix this vulnerability. You may also elect to remove the suid and sgid bits from cdrecord manuall...
MS00-091: Incomplete TCP/IP Packet Vulnerability (199346)
The hotfix for the 'incomplete TCP/IP packet' problem has not been applied. This vulnerability allows a user to prevent this host from communicating with the network. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10563; scriptversion"1.46"; scriptcvsdate"Date:...