Lucene search
K

617 matches found

Debian
Debian
added 2005/02/23 11:9 a.m.39 views

[SECURITY] [DSA 688-1] New squid packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 688-1 [email protected] http://www.debian.org/security/ Martin Schulze February 23rd, 2005 http://www.debian.org/security/faq -...

5CVSS6.4AI score0.41109EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/23 12:0 a.m.29 views

Debian DSA-689-1 : libapache-mod-python - missing input sanitizing

Graham Dumpleton discovered a flaw which can affect anyone using the publisher handle of the Apache Software Foundation's modpython. The publisher handle lets you publish objects inside modules to make them callable via URL. The flaw allows a carefully crafted URL to obtain extra information that...

7.5CVSS5.3AI score0.06465EPSS
Exploits0References2
OSV
OSV
added 2005/02/23 12:0 a.m.22 views

DSA-688-1 squid - mising input sanitising

Bulletin has no description...

5CVSS6AI score0.41109EPSS
Exploits0
OSV
OSV
added 2005/02/23 12:0 a.m.29 views

DSA-689-1 libapache-mod-python - missing input sanitising

Bulletin has no description...

7.5CVSS6AI score0.06465EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/23 12:0 a.m.26 views

Debian DSA-688-1 : squid - missing input sanitising

Upstream developers have discovered several problems in squid, the Internet object cache, the popular WWW proxy cache. A remote attacker can cause squid to crash via certain DNS responses. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

5CVSS5.4AI score0.41109EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/02/18 12:0 a.m.22 views

Debian DSA-686-1 : gftp - missing input sanitising

Albert Puigsech Galicia discovered a directory traversal vulnerability in a proprietary FTP client CAN-2004-1376 which is also present in gftp, a GTK+ FTP client. A malicious server could provide a specially crafted filename that could cause arbitrary files to be overwritten or created by the...

5CVSS5.6AI score0.03648EPSS
Exploits0References2
Debian
Debian
added 2005/02/17 3:57 p.m.44 views

[SECURITY] [DSA 686-1] New gftp packages fix directory traversal vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 686-1 [email protected] http://www.debian.org/security/ Martin Schulze February 17th, 2005 http://www.debian.org/security/faq -...

5CVSS0.3AI score0.08912EPSS
Exploits1
Debian
Debian
added 2005/02/15 7:24 a.m.28 views

[SECURITY] [DSA 682-1] New awstats packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 682-1 [email protected] http://www.debian.org/security/ Martin Schulze February 15th, 2005 http://www.debian.org/security/faq -...

6.9AI score
Exploits11
OSV
OSV
added 2005/02/15 12:0 a.m.21 views

DSA-682-1 awstats - missing input sanitising

Bulletin has no description...

7.5CVSS6AI score0.01954EPSS
Exploits0
Debian
Debian
added 2005/01/20 4:7 p.m.35 views

[SECURITY] [DSA 650-1] New sword packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 650-1 [email protected] http://www.debian.org/security/ Martin Schulze January 20th, 2005 http://www.debian.org/security/faq -...

7.5CVSS7AI score0.02263EPSS
Exploits0
securityvulns
securityvulns
added 2004/12/04 12:0 a.m.35 views

[SECURITY] [DSA 604-1] New hpsockd packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 604-1 [email protected] http://www.debian.org/security/ Martin Schulze December 3rd, 2004 http://www.debian.org/security/faq -...

10CVSS0.6AI score0.10167EPSS
Exploits0
OSV
OSV
added 2004/12/03 12:0 a.m.13 views

DSA-604-1 hpsockd - missing input sanitising

Bulletin has no description...

10CVSS6.1AI score0.10167EPSS
Exploits0
Debian
Debian
added 2004/11/24 5:0 p.m.39 views

[SECURITY] [DSA 596-2] New sudo packages removes debug output

-------------------------------------------------------------------------- Debian Security Advisory DSA 596-2 [email protected] http://www.debian.org/security/ Martin Schulze November 24th, 2004 http://www.debian.org/security/faq -...

7.2CVSS0.1AI score0.01374EPSS
Exploits0
Debian
Debian
added 2004/11/24 5:0 p.m.36 views

[SECURITY] [DSA 596-2] New sudo packages removes debug output

-------------------------------------------------------------------------- Debian Security Advisory DSA 596-2 [email protected] http://www.debian.org/security/ Martin Schulze November 24th, 2004 http://www.debian.org/security/faq -...

7.2CVSS6.5AI score0.01374EPSS
Exploits0
Debian
Debian
added 2004/11/24 12:9 p.m.44 views

[SECURITY] [DSA 596-1] New sudo packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 596-1 [email protected] http://www.debian.org/security/ Martin Schulze November 24th, 2004 http://www.debian.org/security/faq -...

7.2CVSS0.4AI score0.01374EPSS
Exploits0
Debian
Debian
added 2004/11/24 12:9 p.m.36 views

[SECURITY] [DSA 596-1] New sudo packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 596-1 [email protected] http://www.debian.org/security/ Martin Schulze November 24th, 2004 http://www.debian.org/security/faq -...

7.2CVSS6.6AI score0.01374EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/11/24 12:0 a.m.35 views

Debian DSA-596-2 : sudo - missing input sanitising

Liam Helmer noticed that sudo, a program that provides limited super user privileges to specific users, does not clean the environment sufficiently. Bash functions and the CDPATH variable are still passed through to the program running as privileged user, leaving possibilities to overload system...

7.2CVSS5.4AI score0.01374EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2004/11/18 12:0 a.m.12 views

phpMyAdmin -- cross-site scripting vulnerabilities

Multiple cross-site scripting vulnerabilities, caused by improper input parameter sanitizing, were detected in phpMyAdmin, which may enable an attacker to do cross-site scripting attacks...

2.3AI score
Exploits0References1
FreeBSD
FreeBSD
added 2004/11/11 12:0 a.m.18 views

sudo -- privilege escalation with bash scripts

A Sudo Security Alerts reports: A flaw in exists in sudo's environment sanitizing prior to sudo version 1.6.8p2 that could allow a malicious user with permission to run a shell script that utilized the bash shell to run arbitrary commands...

3.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/11/10 12:0 a.m.38 views

Debian DSA-564-1 : mpg123 - missing user input sanitising

Davide Del Vecchio discovered a vulnerability in mpg123, a popular but non-free MPEG layer 1/2/3 audio player. A malicious MPEG layer 2/3 file could cause the header checks in mpg123 to fail, which could in turn allow arbitrary code to be executed with the privileges of the user running mpg123...

7.5CVSS5.7AI score0.03786EPSS
Exploits0References2
Rows per page
Query Builder