Ubuntu 18.10 : ZNC vulnerability (USN-3950-1)

It was discovered that ZNC incorrectly handled certain invalid encodings. An authenticated remote user could use this issue to cause ZNC to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block...

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by a denial of service vulnerability in hostd-vmdb. A remote attacker can exploit this to cause a denial of service condition. Additionally, multiple vulnerabilities, including remote code execution...

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0009) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party libraries : - GnuTLS - Kernel - OpenSSL C Tenable Network Security, Inc. include'compat.inc'; if...

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0013) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Java Runtime Environment JRE - libuser - Netscape Portable Runtime NS...

VMware ESX / ESXi Service Console and Third-Party Libraries Multiple Vulnerabilities (VMSA-2012-0001) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party libraries : - COS kernel - cURL - python - rpm %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

VMware ESX / ESXi Descheduled Time Accounting DoS (VMSA-2009-0007) (remote check)

The remote ESX / ESXi host is missing a security-related patch. It is, therefore, affected by an unspecified flaw in the Descheduled Time Accounting driver that allows a guest Windows user to cause a denial of service. Note that this issue can be exploited only if the feature is installed and the...

SuSE 10 Security Update : Xen (ZYPP Patch Number 8268)

XEN was updated to fix multiple bugs and security issues. The following security issues have been fixed : - xen: hypercall setdebugreg vulnerability XSA-12. CVE-2012-3494 - xen: Qemu VT100 emulation vulnerability XSA-17. CVE-2012-3515 - xen: pv bootloader doesn't check the size of the bzip2 or lz...

SuSE 10 Security Update : flash-player (ZYPP Patch Number 7571)

A critical vulnerability has been identified in Adobe Flash Player 10.3.181.23 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.23 and earlier versions for Android. This memory corruption vulnerability CVE-2011-2110 could cause a crash and potentiall...

SuSE 10 Security Update : freetype2 (ZYPP Patch Number 7366)

Specially crafted font files could crash applications that use freetype2 to render the fonts. CVE-2010-3814 / CVE-2010-3855 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

SuSE 10 Security Update : acroread (ZYPP Patch Number 6803)

Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 Acrobat reader was updated to version 9.3 to fix thos...

GLSA-200906-02 : Ruby: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200906-02 Ruby: Denial of Service Tadayoshi Funaba reported that BigDecimal in ext/bigdecimal/bigdecimal.c does not properly handle string arguments containing overly long numbers. Impact : A remote attacker could exploit this iss...

SuSE 10 Security Update : Xgl (ZYPP Patch Number 5100)

This update fixes several integer overflows in Xgl. CVE-2007-6429 / CVE-2007-1003 / CVE-2007-5958 / CVE-2007-6427 / CVE-2007-6428 / CVE-2007-6429 / CVE-2008-0006 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

SuSE 10 Security Update : cron (ZYPP Patch Number 3831)

By setting hard links to /etc/crontab users were able to prevent cron from running scheduled jobs. CVE-2007-1856 A re-emerged symlink bug allowed users to edit the crontab of other users. CVE-2005-1038 This is a reissue of the SLES10 update after Service Pack 1, since Service Pack 1 merge lost so...

HP-UX Security Patch : PHCO_29956

libc cumulative patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26277; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX PHKL_23335 : HP-UX Filesystem Deadlock, Local Denial of Service (DoS) (HPSBUX00178 SSRT071361 rev.2)

s700800 11.11 solve inode deadlock with mmap and pagefault : filesystem deadlock causes the system hang. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHKL23335. The text itself is copyright C Hewlett-Packard...

HP-UX PHNE_28895 : HP-UX Running on HP9000 Series 700/800, Denial of Service (DoS) (HPSBUX00264 SSRT3460 rev.5)

s700800 11.11 cumulative ARPA Transport patch : Certain network traffic can cause programs to fail. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE28895. The text itself is copyright C Hewlett-Packard...

HP-UX PHSS_27438 : HP-UX, HP Jetdirect, HP Procurve Switches, HP OpenView Network Node Manager (NNM), OpenView Distributed Management (DM), HP TopTools Remote Control Card Running SNMP, Remote Unauthorized Access, Denial of Service (DoS) (HPSBUX00184 SSRT071347 rev.17)

s700800 11.00 OV DM6.00 Intermediate Patch July2002 : Vulnerabilities in SNMP request and trap handling. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS27438. The text itself is copyright C Hewlett-Packard...

HP-UX PHSS_29737 : HP-UX Running dtmailpr Software, Local Root Privileges. (HPSBUX00300 SSRT3667 rev.2)

s700800 11.23 CDE Base Periodic Patch : A potential buffer overflow exists in a function called by the suid root program dtmailpr. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS29737. The text itself is...