2173 matches found
FreeBSD Ports: enscript-a4, enscript-letter, enscript-letterdj
The remote host is missing an update to the system as announced in the referenced advisory. VID 72da8af6-7c75-11d9-8cc5-000854d03344 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
GLSA-200808-03 : Mozilla products: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200808-03 Mozilla products: Multiple vulnerabilities The following vulnerabilities were reported in all mentioned Mozilla products: TippingPoint's Zero Day Initiative reported that an incorrect integer data type is used as a CSS...
Design/Logic Flaw
Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' pipe characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely...
Firefox 3.x < 3.0.1 Multiple Vulnerabilities
The installed version of Firefox is affected by various security issues : - By creating a very large number of references to a common CSS object, an attacker can overflow the CSS reference counter, causing a crash when the browser attempts to free the CSS object while still in use and allowing fo...
Firefox command line URL launches multi-tabs
Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' pipe characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely...
Firefox command line URL launches multi-tabs
Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' pipe characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely...
AST-2008-009: (Corrected subject) Remote crash vulnerability in ooh323 channel driver
Asterisk Project Security Advisory - AST-2008-009 +------------------------------------------------------------------------+ | Product | Asterisk-Addons | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in ooh323 channel | | | driv...
VMware Server 1.0.5多个安全漏洞
BUGTRAQ ID: 28276 CVECAN ID: CVE-2008-1361,CVE-2008-1362,CVE-2008-1363 VMware Server是一款简单易用的服务器虚拟工具。 VMware Server中存在多个安全漏洞,允许恶意的本地用户获得权限提升或导致拒绝服务。 恶意的Windows用户可以通过导致authd进程连接到打开的受恶意用户控制的命名管道获得LocalSystem权限,还可能利用不安全的命名管道对象获得权限提升或导致拒绝服务。在这种情况下,攻击者可以扮演成为authd并获得Authd所执行的权限。...
Code injection
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by...
CVE-2008-1361
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation that...
CVE-2008-1362
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by...
CVE-2008-1362
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by...
Solaris 8/9/10 fifofs I_PEEK Local Kernel memory Leak Exploit
Exploit for solaris platform in category local exploits ============================================================= Solaris 8/9/10 fifofs IPEEK Local Kernel memory Leak Exploit ============================================================= / $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp...
AIX 520009 : U807824
The remote host is missing AIX PTF U807824 which is related to the security of the package PEXPHIGS.graPHIGS.rte.pipe You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through...
Linux Kernel 2.6.23 2.6.24 - vmsplice Local Privilege Escalation (1)
Linux Kernel 2.6.23 2.6.24 - vmsplice Local Privilege Escalation 1 / dianelanefuckedhard.c Linux vmsplice Local Root Exploit By qaaz Linux 2.6.23 - 2.6.24 / define GNUSOURCE include include include include include include define TARGETPATTERN " sysvm86old" define TARGETSYSCALL 113 ifndef NRvmspli...
Debian Security Advisory DSA 151-1 (xinetd)
The remote host is missing an update to xinetd announced via advisory DSA 151-1. OpenVAS Vulnerability Test $Id: deb1511.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 151-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian: Security Advisory (DSA-151)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-771-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Session fixation
Pioneers formerly gnocatan before 0.11.3 allows remote attackers to cause a denial of service crash by triggering a delete operation while the Session object is still being used, as demonstrated by causing a "Broken pipe" error...