HP-UX PHSS_31823 : s700_800 11.04 Virtualvault 4.7 IWS update

s700800 11.04 Virtualvault 4.7 IWS update : The ssllog function in modssl contains a flaw in versions prior to 2.8.19 that may allow execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch...

Fedora Core 2 : cups-1.1.20-11.11 (2005-122)

A problem with PDF handling was discovered by Chris Evans, and has been fixed. The Common Vulnerabilities and Exposures project www.mitre.org has assigned the name CVE-2004-0888 to this issue. FEDORA-2004-337 attempted to correct this but the patch was incomplete. Note that Tenable Network Securi...

[Full-Disclosure] Integrigy Security Advisory - High Risk Security Issues in the Oracle Database and Oracle Applications

Integrigy Security Advisory High Risk Security Issues in the Oracle Database and Oracle Applications Oracle Critical Patch Update - January 2005 January 19, 2005 Summary: Oracle has released the its first Critical Patch Update January 2005 and fixes 23 vulnerabilities in the Oracle Database, Orac...

Oracle Database Multiple Vulnerabilities (January 2005 CPU)

The remote Oracle Database, according to its version number, is vulnerable to several flaws, ranging from information disclosure about the remote host to code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Solaris 9 (x86) : 116775-04

SunOS 5.9x86: ping Patch. Date this patch was last updated by Sun : Feb/05/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Solaris 8 (x86) : 116987-02

SunOS 5.8x86: /usr/sbin/ping patch. Date this patch was last updated by Sun : Nov/15/04 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Moderate: Red Hat Security Advisory: squid security update

An updated squid package that fixes a security vulnerability in the NTLM authentication helper is now available. Squid is a full-featured Web proxy cache. An out of bounds memory read bug was found within the NTLM authentication helper routine. If Squid is configured to use the NTLM authenticatio...

Mandrake Linux Security Advisory : libpng (MDKSA-2004:063)

A buffer overflow vulnerability was discovered in libpng due to a wrong calculation of some loop offset values. This buffer overflow can lead to Denial of Service or even remote compromise. This vulnerability was initially patched in January of 2003, but it has since been noted that fixes were...

Mandrake Linux Security Advisory : unzip (MDKSA-2003:073-1)

A vulnerability was discovered in unzip 5.50 and earlier that allows attackers to overwrite arbitrary files during archive extraction by placing non-printable characters between two '.' characters. These invalid characters are filtered which results in a '..' sequence. The patch applied to these...

SuSE-SA:2003:014: kdelibs/kdelibs3

The remote host is missing the patch for the advisory SuSE-SA:2003:014 kdelibs/kdelibs3. The kdelibs3 kdelibs for SLES7 based products package is a core package for the K desktop environment KDE. The URI handler of the kdelibs3 and kdelibs class library contains a flaw which allows remote attacke...

SUSE-SA:2003:013: sendmail, sendmail-tls

The remote host is missing the patch for the advisory SUSE-SA:2003:013 sendmail, sendmail-tls. sendmail is the most widely used mail transport agent MTA in the internet. A remotely exploitable buffer overflow has been found in all versions of sendmail that come with SUSE products. These versions...

SUSE-SA:2002:042: kdenetwork

The remote host is missing the patch for the advisory SUSE-SA:2002:042 kdenetwork. During a security review, the SUSE security team has found two vulnerabilities in the KDE lanbrowsing service. LISa is used to identify CIFS and other servers on the local network, and consists of two main modules:...

SuSE-SA:2004:007: openssl

The remote host is missing the patch for the advisory SuSE-SA:2004:007 openssl. OpenSSL is an implementation of the Secure Socket Layer SSL v2/3 and Transport Layer Security TLS v1 protocol. The NISCC informed us about to failure conditions in openssl that can be triggered to crash applications...

SuSE-SA:2003:046: sane

The remote host is missing the patch for the advisory SuSE-SA:2003:046 sane. The sane Scanner Access Now Easy package provides access to scanners either locally or remotely over the network. Several bugs in sane were fixed to avoid remote denial-of-service attacks. These attacks can even be...

SUSE-SA:2004:021: php4/mod_php4

The remote host is missing the patch for the advisory SUSE-SA:2004:021 php4/modphp4. PHP is a well known, widely-used scripting language often used within web server setups. Stefan Esser found a problem with the 'memorylimit' handling of PHP which allows remote attackers to execute arbitrary code...

SUSE-SA:2003:0006: dhcp

The remote host is missing the patch for the advisory SUSE-SA:2003:0006 dhcp. The ISC Internet Software Consortium dhcp package is an imple- mentation of the 'Dynamic Host Configuration Protocol' DHCP. An internal source code audit done by ISC revealed several buffer overflows in the code which i...

SUSE-SA:2003:019: ethereal

The remote host is missing the patch for the advisory SUSE-SA:2003:019 ethereal. Ethereal is a GUI for analyzing and displaying network traffic. Ethereal is vulnerable to a format string bug in it's SOCKS code and to a heap buffer overflow in it's NTLMSSP code. These bugs can be abused to crash...

Solaris 9 (x86) : 116341-09

SunOS 5.9x86: gzip and Freeware info files patch. Date this patch was last updated by Sun : May/05/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; ...

Solaris 7 (x86) : 109405-01

SunOS 5.7x86: /usr/vmsys/bin/chkperm patch. Date this patch was last updated by Sun : Jun/02/00 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 7 (x86) : 107023-11

CDE 1.3x86: Calendar Manager patch. Date this patch was last updated by Sun : Sep/21/04 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...