DSA-2038-1 pidgin - denial of service

Bulletin has no description...

Design/Logic Flaw

Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express CME or Cisco Unified Survivable Remote Site Telephony SRST is enabled, allows remote attackers to cause a denial of service device reload via a malformed Skinny Client Control Protocol SCCP message, aka Bug ID...

gnutls security update

1.4.1-3.8 - fix safe renegotiation on SSL3 protocol 1.4.1-3.7 - implement safe renegotiation - CVE-2009-3555 533125 - do not allow MD2 in certificate signatures by default - CVE-2009-2409 510197...

ZKSoftware Biometric Attendence managnmnet Hardware [MIPS] Vuln

Exploit for hardware platform in category remote exploits ================================================================================= ZKSoftware Biometric Attendence managnmnet HardwareMIPS Improper Authentication...

Microsoft SMB Multiple RCE Vulnerabilities (958687) - Active Check

This host is missing a critical security update according to Microsoft Bulletin MS09-001. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Skype URI Processing Arbitrary XML File Deletion Vulnerability

This vulnerability allows remote attackers to remove arbitrary XML files on vulnerable installations of Skype. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in Skype's handling of the 'skype-plugin:' protocol. A...

Debian DSA-1967-1 : transmission - directory traversal

Dan Rosenberg discovered that Transmission, a lightwight client for the Bittorrent filesharing protocol, performs insufficient sanitising of file names specified in .torrent files. This could lead to the overwrite of local files with the privileges of the user running Transmission if the user is...

XMPP (Jabber) Server / Client Detection (TCP)

TCP based detection of services supporting the Extensible Messaging and Presence Protocol XMPP formerly named Jabber. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Microsoft Windows SMB Service Config Enumeration

Nessus was able to obtain, via the SMB protocol, the launch parameters of each active service on the remote host executable path, logon type, etc.. C Tenable, Inc. include"compat.inc"; if description scriptid44401; scriptversion"1.20"; scriptsetattributeattribute:"pluginmodificationdate",...

Subversion svn Protocol String Parsing (CVE-2004-0413)

Subversion is a revision control system that handles svn protocol requests. A specially crafted svn request could cause svnserve, the daemon that handles svn protocol requests, to allocate insufficient heap memory and overflow the heap. It is possible for a malicious attacker to run arbitrary cod...

[RT-SA-2010-003] Geo++(R) GNCASTER: Faulty implementation of HTTP Digest Authentication

Advisory: Geo++R GNCASTER: Faulty implementation of HTTP Digest Authentication During a penetration test, RedTeam Pentesting discovered that the GNCaster software has multiple bugs in its implementation of HTTP Digest Authentication. Details ======= Product: Geo++R GNCASTER Affected Versions: =...

Geo++(R) GNCASTER Insecure Handling Of NMEA-Data

Advisory: Geo++R GNCASTER: Insecure handling of NMEA-data During a penetration test, RedTeam Pentesting discovered that the GNCaster software does not handle NMEA-data correctly. An attacker that has valid login credentials can use this to crash the server software or potentially execute code on...

CVE-2009-4247

Stack-based buffer overflow in protocol/rtsp/rtspclnt.cpp in RealNetworks RealPlayer 10; RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741; RealPlayer 11 11.0.x; RealPlayer SP 1.0.0 and 1.0.1; RealPlayer Enterprise; Mac RealPlayer 10, 10.1, 11.0, and 11.0.1; Linux RealPlayer 10, 11.0.0, and 11.0.1;...

dns-service-discovery NSE Script

Attempts to discover target hosts' services using the DNS Service Discovery protocol. The script first sends a query for services.dns-sd.udp.local to get a list of services. It then sends a followup query for each one to try to get more information. Script Arguments max-newtargets, newtargets See...

Inside The Aurora (Google Attack) Malware

Security researchers are continuing to delve into the details of the malware that’s been used in the attacks against Google, Adobe and other large companies, and they’re finding a complex package of programs that use custom protocols and sophisticated infection techniques. The attacks, which are...

Security Best Practice: Protect Yourself from Multiple POP3 Vulnerabilities

Post Office Protocol version 3 POP3 is an electronic mail protocol used to retrieve messages stored in e-mail servers. POP3 is a 'pull' protocol. To check for messages, a client connects to its mail server and using the POP3 protocol, logins to its mailbox and 'pulls' out its messages. POP3 allow...

Oracle Database - Remote Listener Memory Corruption

Oracle Database - Remote Listener Memory Corruption source: https://www.securityfocus.com/bid/37728/info Oracle Database is prone to a remote memory-corruption vulnerability in Listener. The vulnerability can be exploited over the 'Oracle Net' protocol. An attacker does not require privileges to...

SunRPC Portmap Program Enumerator

This module calls the target portmap service and enumerates all program entries and their running port numbers. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SunRPC Portmap Program Enumerator...

FreeBSD -- SSL protocol flaw

Problem Description: The SSL version 3 and TLS protocols support session renegotiation without cryptographically tying the new session parameters to the old parameters...

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been reported in OpenSSL: Marsh Ray of PhoneFactor and Martin Rex of SAP...