748 matches found
Fedora Update for php-Smarty FEDORA-2008-10409
Check for the Version of php-Smarty OpenVAS Vulnerability Test Fedora Update for php-Smarty FEDORA-2008-10409 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
[SECURITY] Fedora 10 Update: drupal-views-6.x.2.2-1.fc10
The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...
[SECURITY] Fedora 9 Update: drupal-views-6.x.2.2-1.fc9
The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...
[SECURITY] Fedora 10 Update: php-Smarty-2.6.20-2.fc10
Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...
CVE-2008-5107
The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files...
Design/Logic Flaw
The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files...
CVE-2008-5107
The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files...
CVE-2008-5107
CVE-2008-5107 affects Citrix Presentation Server 4.5 and Citrix Desktop Server 1.0. When MSI logging is enabled, the installation process stores database credentials in MSI log files, allowing local users to read them and obtain credentials. Root cause described as the logging process exposing se...
[SECURITY] Fedora 8 Update: php-Smarty-2.6.20-2.fc8
Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...
CVE-2008-4676
Summary: CVE-2008-4676 describes an unspecified local privilege-escalation vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0. The issue is triggered by unknown attack vectors related to cr...
[SECURITY] Fedora 8 Update: php-Smarty-2.6.20-1.fc8
Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...
[SECURITY] Fedora 9 Update: php-Smarty-2.6.20-1.fc9
Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...
CVE-2008-3485
Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path...
CVE-2008-3485
Technical details about CVE-2008-3485 are not publicly available in the provided documents. Monitor for updates from CVE/NVD entries or vendor advisories.
Citrix Presentation Server 'icabar.exe'本地特权提升漏洞
BUGTRAQ ID: 30446 CNCAN ID:CNCAN-2008073109 Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server icabar.exe文件存在错误,本地攻击者可以利用漏洞提升特权。 icabar.exe文件设计用于启动Citrix MetaFrame管理工具条,允许攻击者在windows 2000或者以下版本的系统中,在默认配置情况下提升特权。在部分环境下的windows 2003也可能利用。...
CentOS 4 : openoffice.org2 (CESA-2008:0537)
Updated openoffice.org packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that...
[SECURITY] Fedora 7 Update: openoffice.org-2.3.0-6.9.fc7
OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office...
[SECURITY] Fedora 9 Update: openoffice.org-2.4.1-17.3.fc9
OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office...
Design/Logic Flaw
Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass...
CVE-2008-2300
Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors...