Rising Web Scan Object 'OL2005.dll' ActiveX Control Remote Code Execution Vulnerability

Description Rising Web Scan Object 'OL2005.dll' ActiveX control is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code on a victim's computer in the context of the vulnerable application using the ActiveX control typically Internet Explorer...

AIX 530005 : U811316

The remote host is missing AIX PTF U811316 which is related to the security of the package rpm.rte.3.0 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

GLSA-200801-07 : Adobe Flash Player: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200801-07 Adobe Flash Player: Multiple vulnerabilities Flash contains a copy of PCRE which is vulnerable to a heap-based buffer overflow GLSA 200711-30, CVE-2007-4768. Aaron Portnoy reported an unspecified vulnerability related to...

Dell Remote Access Card DoS

nmap scan causes SSH service to crash...

Format string

The Platform Service Process asampsp in Fan-Out Driver Platform Services for Novell Identity Manager IDM 3.5.1 allows remote attackers to cause a denial of service daemon crash via unspecified network traffic that triggers a syslog message containing invalid format string specifiers, as...

CVE-2007-6625

The Platform Service Process asampsp in Fan-Out Driver Platform Services for Novell Identity Manager IDM 3.5.1 allows remote attackers to cause a denial of service daemon crash via unspecified network traffic that triggers a syslog message containing invalid format string specifiers, as...

The Trojan uses the“free kill”evading anti-virus techniques-vulnerability warning-the black bar safety net

Today, talk about horses can be described as color change. Trojan indeed than the conventional virus more ruthless, monitoring your operation, devouring your privacy, destroy your data. We install the latest antivirus software and daily patch updates, and the firewall is always protected, but why...

SuSE 10 Security Update : clamav (ZYPP Patch Number 2243)

The virus scan engine ClamAV was update to version 0.88.6. Following issues are fixed by this update : - freshclam: apply timeout patch from Everton da Silva Marques new options: ConnectTimeout and ReceiveTimeout - clamd: change stack size at the right place closes clamav bug103 -...

Symantec AntiVirus For Macintosh Mount扫描本地特权提升漏洞

Symantec AntiVirus For Macintosh是一款苹果系统上的反病毒应用程序。 Symantec AntiVirus For Macintosh包含的Mount Scan功能存在设计错误，本地攻击者可以利用漏洞提升特权。 Symantec AntiVirus for Macintosh的Mount Scan功能使用一个可执行程序，并且Norton AntiVirus for Macintosh以ROOT访问权限运行。组管理成员可以使用恶意程序替代这个可执行程序，获得ROOT访问。 /Library/Application Support文件夹使用组属admin gid...

Ubuntu 6.10 : linux-restricted-modules-2.6.17 vulnerability (USN-404-1)

Laurent Butti, Jerome Razniewski, and Julien Tinnes discovered that the MadWifi wireless driver did not correctly check packet contents when receiving scan replies. A remote attacker could send a specially crafted packet and execute arbitrary code with root privileges. Note that Tenable Network...

CVE-2002-2379

Cisco AS5350 running IOS 12.2(11)T with ACLs applied (and possibly with ssh enabled) may crash via a remote port scan, indicating a potential ssh-related bug. The condition is specifically described as affecting the device when ACLs are in place and ssh may be running; vendor could not reproduce ...

CVE-2007-4277

CVE-2007-4277 : Local privilege-escalation in Trend Micro’s AntiVirus engine (pre-8.550-1001) via insecure permissions on the DOS device \.\Tmfilter and an IOCTL handler (0xa0284403) that copies attacker-supplied data into a fixed-size buffer. Local users can send arbitrary content to the device,...

Windows binary of "Virtual Floppy Drive 2.1" contains vulnerable zlib (CAN-2005-2096)

The binary of the presumably not widely used Windows software "Virtual Floppy Drive 2.1" http://chitchat.at.infoseek.co.jp/vmware/vfd.html ships with a vfd.dll that is statically linked against zlib 1.2.2 http://www.zlib.net/ which is vulnerable to CAN-2005-2096. A scan with ClamAV against the...

Trend Micro病毒扫描引擎Tmxpflt.sys多个本地安全漏洞

BUGTRAQ ID: 26209 CVECAN ID: CVE-2007-4277 Trend Micro病毒扫描引擎为桌面、服务器和网关提供杀毒功能。 Trend Micro病毒扫描引擎的驱动实现上存在多个安全漏洞，本地攻击者可能利用此漏洞提升权限。 Trend Micro的杀毒引擎中所捆绑的Tmxpflt.sys驱动中没有对\.\Tmfilter DOS设备接口设置安全的权限，允许Everyone写访问，因此任何本地登录的用户都可以访问仅有特权用户才可以访问的功能。 此外这个DOS设备接口的IOCTL...

CVE-2002-2285

eTrust InoculateIT 6.0 with the "Incremental Scan" option enabled may certify that a file is free of viruses before the file has been completely downloaded, which allows remote attackers to bypass virus detection...

openSUSE 10 Security Update : clamav (clamav-2242)

The virus scan engine ClamAV was update to version 0.88.6. Following issues are fixed by this update : - freshclam: apply timeout patch from Everton da Silva Marques new options: ConnectTimeout and ReceiveTimeout - clamd: change stack size at the right place closes clamav bug103 -...

openSUSE 10 Security Update : sylpheed-claws (sylpheed-claws-2685)

The mailreader sylpheed-claws directly links to the clamav virus scan engine. Since we released clamav 0.90 which contains a library so version change we need to release this package to align the requirements. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

FTP protocol PASV design flaw affects konqueror

The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response...

HP-UX Security Patch : PHKL_32772

VxFS 3.5-ga15 Kernel Cumulative Patch 11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26410; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...

Nmap advanced usage guide-vulnerability warning-the black bar safety net

Now with Nmap when HOU found Nmap tips Happy 10th Birthday to Nmap, may it live to be 1 1 0! It's been 1 0 years old birthday, perhaps you can can live to be 1 1 0 years olddidn't think 9 7 years 9 months 1 day it was born the day of 1 0 years of grinding sword. In honor of this great port scanne...