[ MDVSA-2011:183 ] pidgin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:183 http://www.mandriva.com/security/ Package : pidgin Date : December 10, 2011 Affected: 2010.1, 2011., Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and corrected ...

SopCast 3.4.7 - sop: URI Handling Remote Stack Buffer Overflow (PoC)

SopCast 3.4.7 - sop: URI Handling Remote Stack Buffer Overflow PoC !/usr/bin/perl SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC Vendor: SopCast.com Product web page: http://www.sopcast.com Affected version: 3.4.7.45585 Summary: SopCast is a simple, free way to broadcast video...

Unbreakable Enterprise kernel security update

2.6.32-200.23.1.el6uek - net: Remove atmclip.h to prevent break kabi check. - KConfig: add CONFIGUEK5=n to ol6/config-generic 2.6.32-200.22.1.el6uek - ipv6: make fragment identifications less predictable Joe Jin CVE-2011-2699 - vlan: fix panic when handling priority tagged frames Joe Jin...

Ubuntu 10.04 LTS / 10.10 / 11.04 : pidgin vulnerabilities (USN-1273-1)

Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. CVE-2011-1091...

Researchers Crack Siri Protocol

Researchers cracked the pride of Apple’s latest iPhone iteration yesterday, reverse-engineering the language processing, interactive personal assistant application called Siri. On their blog, the researchers from Applidium posted a demo and directions that will allow users to install and use the...

openvas-otp-brute NSE Script

Performs brute force password auditing against a OpenVAS vulnerability scanner daemon using the OTP 1.0 protocol. Script Arguments openvas-otp-brute.threads sets the number of threads. Default: 4 passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb See the documentation for the...

[SECURITY] Fedora 16 Update: tor-0.2.2.34-1600.fc16

Tor is a connection-based low-latency anonymous communication system. Applications connect to the local Tor proxy using the SOCKS protocol. The local proxy chooses a path through a set of relays, in which each relay knows its predecessor and successor, but no others. Traffic flowing down the...

Google Enable SSL-based searches, Will impact Google Analytic !

Google Enable SSL-based searches, Will impact Google Analytic ! According to a blog post by Google, the company is taking steps towards making search more secure for its users. Users will be redirected to https:// instead of https:// when going to do a Google search. By forcing SSL on...

finch, libpurple, pidgin security update

CentOS Errata and Security Advisory CESA-2011:1371 Updated pidgin packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVS...

Cogent DataHub 7.1.1.63 - Stack Overflow

Luigi Auriemma Application: Cogent DataHub http://www.cogentdatahub.com/Products/CogentDataHub.html Versions: = 7.1.1.63 Platforms: Windows Bug: stack unicode overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3...

Fedora Update for dhcp FEDORA-2011-10740

Check for the Version of dhcp OpenVAS Vulnerability Test Fedora Update for dhcp FEDORA-2011-10740 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x (CVE-2011-3192)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Apache HTTPD Security ADVISORY ============================== UPDATE 2 Title: Range header DoS vulnerability Apache HTTPD 1.3/2.x CVE: CVE-2011-3192 Last Change: 20110826 1030Z Date: 20110824 1600Z Product: Apache HTTPD Web Server Versions: Apache 1.3...

Apache HTTPD 1.3/2.x Range header DoS vulnerability

Overview Apache HTTPD server contains a denial-of-service vulnerability in the way multiple overlapping ranges are handled. Both the 'Range' header and the 'Range-Request' header are vulnerable. An attack tool, commonly known as 'Apache Killer', has been released in the wild. The attack tool caus...

CVE-2011-3266

Wireshark vulnerability CVE-2011-3266 affects the IKEv1 dissector: the proto_tree_add_item handling can be exploited by a malformed IKE packet with many items to trigger a denial of service (infinite loop). Affected versions per connected sources: Wireshark 1.6.0–1.6.1 and 1.4.0–1.4.8. Root cause...

RedHat Update for dhcp RHSA-2011:1160-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[SECURITY] Fedora 15 Update: cifs-utils-5.0-2.fc15

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. This package contains tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS...

CentOS Update for finch CESA-2009:1536 centos5 i386

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2009:1536 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS Update for openssh CESA-2009:1287 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for net-snmp CESA-2009:1124 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for spice-xpi CESA-2011:0427 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...