[SECURITY] Fedora 14 Update: wireshark-1.4.3-1.fc14

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

webkit: memory corruption with MIME types

Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to...

OpenVAS TCP scanner

This plugin is a classical TCP port scanner It shall be reasonably quick even against a firewalled target. Once a TCP connection is open, it grabs any available banner for the service identification plugins Note that TCP scanners are more intrusive than SYN half open scanners. OpenVAS Vulnerabili...

Fedora Update for pidgin FEDORA-2010-19317

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2010-19317 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

[SECURITY] Fedora 13 Update: pidgin-2.7.9-1.fc13

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

Novell iPrint Client Netscape/ActiveX Location Header Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Client. Authentication is not required to exploit this vulnerability. The flaw exists within the nipplib.dll component which is used by both the Mozilla and IE browser plugins for...

Metasploit 3.5.1 adds Cisco device exploitation !

Metasploit now enables security professionals to exploit Cisco devices, performs passive reconnaissance through traffic analysis, provides more exploits and evaluates an organization's password security by brute forcing an ever increasing range of services. This latest release adds stealth...

MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload

============================================== File Upload Vulnerability Plugins tinymce ============================================== http://tinymce.moxiecode.com/pluginsfilemanager.php Major version 3 Minor version 2.2.3 Author : Vladimir Vorontsov Contact : d0znpp at gmail dot com Greetz : GN...

Code injection

The currdcreatefile function src/utilsrrdcreate.c in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service assertion failure via a packet with a timestamp whose value is 10 or less, as demonstrated by creating RRD files using the 1 RRDtool and 2 RRDCacheD...

CVE-2010-4336

The currdcreatefile function src/utilsrrdcreate.c in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service assertion failure via a packet with a timestamp whose value is 10 or less, as demonstrated by creating RRD files using the 1 RRDtool and 2 RRDCacheD...

Winamp Multiple Vulnerabilities

Winamp is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9) Meet the new spam, same as the old spam

As in life in general, if something works, you stick with it. How else to explain the continued popularity and prevelance of e-mail based spam and phishing attacks, even though everyone knows that e-mail is so “1998”? Alas, the truth is that attacks embedded as links or malicious attachments in...

Mandriva Update for kipi-plugins MDVA-2010:220 (kipi-plugins)

Check for the Version of kipi-plugins OpenVAS Vulnerability Test Mandriva Update for kipi-plugins MDVA-2010:220 kipi-plugins Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Wordpress 3.0.1 massmirror_uploader (plugins) Upload Vulnerability

Exploit for php platform in category web applications ================================================================== Wordpress 3.0.1 massmirroruploader plugins Upload Vulnerability ==================================================================...

Mandriva Update for kipi-plugins MDVA-2010:220 (kipi-plugins)

Check for the Version of kipi-plugins OpenVAS Vulnerability Test Mandriva Update for kipi-plugins MDVA-2010:220 kipi-plugins Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for pidgin FEDORA-2010-16629

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2010-16629 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

[SECURITY] Fedora 12 Update: pidgin-2.7.5-1.fc12

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

MDVA-2010:220 : kipi-plugins

It was discovered the kipi-plugins packages were not rebuilt relinked against the libkdcraw.so.8 and libkexiv2.so.8 libraries provided by kdegraphics4-4.3.5-0.7mdv2010.0. This advisory addresses this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch...

[SECURITY] Fedora 13 Update: pidgin-2.7.4-1.fc13

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

DEBIAN-CVE-2010-3711

libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purplebase64decode function, which allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a crafted message, related to the plugins for MSN, MySpaceIM,...