CVE-2010-0664

Removed by vendor...

MPlayer Real Demuxer stream_read Heap Overflow (CVE-2008-3827)

MPlayer is an open source multimedia player for Linux that is also available in a Mac OS X and Windows versions. It can play many audio and video formats MPEG, DivX, ogg, RealMedia, etc. as well as various streaming protocols. It is highly portable and available for multiple platforms. There exis...

Digium Asterisk Invalid RTP Payload Type Number Memory Corruption (CVE-2008-1289)

Asterisk is an open source software implementation of a telephone private branch exchange. Like any PBX, it allows a number of attached telephones to make calls to one another, and to connect to other telephone services including the public switched telephone network. Asterisk supports a wide ran...

Microsoft Outlook 2002 Script Execution (CVE-2004-0121)

Microsoft provides server and client side implementations of email protocols such as SMTP, POP3 and IMAP. The widely used Microsoft Outlook product is an implementation of an email client capable of handling most standard Internet protocols as well as numerous proprietary Microsoft protocols and...

BlackBerry Spyware Can Intercept Texts, Email, Track User's Location

A security researcher demonstrated a spyware program at the ShmooCon conference on Sunday that is capable of intercepting and recording text messages, emails, Web traffic and other data sent to and from BlackBerry devices. Tyler Shields, a senior security researcher at Veracode, showed a...

[SECURITY] Fedora 12 Update: bind-9.6.1-15.P3.fc12

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

[SECURITY] Fedora 11 Update: pidgin-2.6.5-1.fc11

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

[SECURITY] Fedora 12 Update: pidgin-2.6.5-1.fc12

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

{PRL} Novell Netware CIFS And AFP Remote Memory Consumption DoS

Application: Novell Netware CIFS And AFP Remote Memory Consumption DoS Platforms: Novell Netware 6.5 SP8 Crash: YES Exploitation: Remote DoS Date: 2009-12-21 Author: Francis Provencher Protek Research Lab's Blog: http://protekresearch.blogspot.com/ 1...

CentOS 5 : gnutls (CESA-2008:0489)

Updated gnutls packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The GnuTLS Library provides support for cryptographic algorithms and protocols such as TL...

Internet Explorer FTP Response Parsing Memory Corruption (MS07-016; CVE-2007-0217)

Microsoft Internet Explorer IE is a web browser application that is included as part of Microsoft Windows operating systems. Microsoft Windows Internet WinINet application programming interface API in Internet Explorer is a component to serve as application interface for Internet protocols, such ...

[SECURITY] Fedora 10 Update: asterisk-1.6.0.19-1.fc10

Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware...

FreeBSD Security Advisory (FreeBSD-SA-09:15.ssl.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:15.ssl.asc ADV FreeBSD-SA-09:15.ssl.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-09:15.ssl.asc Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

[SECURITY] Fedora 10 Update: wget-1.12-2.fc10

GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...

[SECURITY] Fedora 12 Update: bind-9.6.1-13.P2.fc12

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

[SECURITY] Fedora 11 Update: bind-9.6.1-7.P2.fc11

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

Wireshark multiple security vulnerabilities

Multiple vulnerabilities on different protocols dissction...

TLS Renegotiation (CVE-2009-3555)

Transport Layer Security TLS and Secure Sockets Layer SSL are cryptographic protocols that provide security for communications over networks. A spoofing vulnerability exists in multiple implementations of these protocols. The vulnerability is due to the flaw in the renegotiation aspect of the TLS...

httpd, mod_ssl security update

CentOS Errata and Security Advisory CESA-2009:1580 Updated httpd packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular We...

New TLS/SSL3. 0 middle attack has been published-vulnerability warning-the black bar safety net

Just have the researchers published a method for the TLS/SSL man in the middle attack, the attack 1. exploitable operable relatively strong 2. Currently there is no solution, wait for the manufacturers of the patches. 3. The affected upper-layer protocols including HTTPS,IMAP, SIP, etc. Someone...