CVE-2011-1940

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.3.x before 3.3.10.1 and 3.4.x before 3.4.1 allow remote attackers to inject arbitrary web script or HTML via a crafted table name that triggers improper HTML rendering on a Tracking page, related to 1 libraries/tbllinks.inc.php and...

Mandriva Linux Security Advisory : t1lib (MDVSA-2012:004)

Multiple vulnerabilities has been found and corrected in t1lib : A heap-based buffer overflow flaw was found in the way AFM font file parser, used for rendering of DVI files, in GNOME evince document viewer and other products, processed line tokens from the given input stream. A remote attacker...

UBUNTU-CVE-2012-0044

Integer overflow in the drmmodedirtyfbioctl function in drivers/gpu/drm/drmcrtc.c in the Direct Rendering Manager DRM subsystem in the Linux kernel before 3.1.5 allows local users to gain privileges or cause a denial of service memory corruption via a crafted ioctl call...

Kayako SupportSuite 3.x - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/51377/info Kayako SupportSuite is prone to the following vulnerabilities: 1. Multiple HTML-injection vulnerabilities. 2. A remote code-execution vulnerability. 3. Multiple cross-site scripting vulnerabilities. Successful exploits will allow...

Arora Common Name SSL Certificate Spoofing Vulnerability (Linux)

This host is installed with Arora and is prone common name SSL certificate spoofing vulnerability. Openvas Vulnerability Test $id: secpodaroracnsslcertspoofingvulnlin.nasl 2011-12-15 14:01:47z dec $ Arora Common Name SSL Certificate Spoofing Vulnerability Linux Authors: Madhuri D Copyright:...

CVE-2011-3404

Microsoft Internet Explorer 6 through 9 does not properly use the Content-Disposition HTTP header to control rendering of the HTTP response body, which allows remote attackers to read content from a different 1 domain or 2 zone via a crafted web site, aka "Content-Disposition Information Disclosu...

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: www.securityfocus.com/bid/51069/info Nagios XI is prone to an HTML injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Successful...

Fedora Update for freetype FEDORA-2011-15964

Check for the Version of freetype OpenVAS Vulnerability Test Fedora Update for freetype FEDORA-2011-15964 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[SECURITY] Fedora 15 Update: freetype-2.4.4-7.fc15

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

Fedora Update for freetype FEDORA-2011-15956

Check for the Version of freetype OpenVAS Vulnerability Test Fedora Update for freetype FEDORA-2011-15956 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CVE-2011-3366

Rekonq 0.7.0 and earlier does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name CN of a certificate via rich text...

Design/Logic Flaw

Arora, possibly 0.11 and other versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name CN of a certificate via rich text...

CVE-2011-3366

Rekonq 0.7.0 and earlier does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name CN of a certificate via rich text...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Windows)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11win.nasl 7052 2017-09-04 11:50:51Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Windows Authors: Madhuri D Copyright: Copyright c...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11macosx.nasl 7024 2017-08-30 11:51:43Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Mac OS X Authors: Madhuri D Copyright: Copyright...

RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Mac OS X

RealPlayer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 16 Update: freetype-2.4.6-4.fc16

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

Fedora Update for freetype FEDORA-2011-14749

Check for the Version of freetype OpenVAS Vulnerability Test Fedora Update for freetype FEDORA-2011-14749 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[SECURITY] Fedora 15 Update: freetype-2.4.4-6.fc15

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

Debian DSA-2341-1 : iceweasel - several vulnerabilities

Several vulnerabilities have been discovered in Iceweasel, a web browser based on Firefox. The included XULRunner library provides rendering services for several other applications included in Debian. - CVE-2011-3647 'mozbugra4' discovered a privilege escalation vulnerability in addon handling. -...