1853 matches found
RHEL 4 / 5 : samba (RHSA-2011:1219)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1219 advisory. - samba: mount.cifs improper device name and mountpoint strings sanitization CVE-2010-0547 - samba: Race condition by mount mount.cifs...
RHEL 5 / 6 : flash-plugin (RHSA-2011:0850)
The remote Redhat Enterprise Linux 5 / 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2011:0850 advisory. - flash-plugin: Cross-site scripting vulnerability APSB11-13 CVE-2011-2107 Note that Nessus has not tested for this issue but has instead relied...
Apache Tomcat 7.0.x < 7.0.12 Multiple Vulnerabilities
Binary data 5882.pasl...
RHEL 4 / 5 : wireshark (RHSA-2011:0370)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0370 advisory. Wireshark is a program for monitoring network traffic. Wireshark was previously known as Ethereal. A heap-based buffer overflow flaw was...
Apache Derby 'BUILTIN' Authentication Insecure Password Hashing
According to its self-reported version number, the installation of Apache Derby running on the remote server performs a transformation on passwords that removes half the bits from most of the characters before hashing. This leads to a large number of hash collisions, letting passwords be easily...
RHEL 5 : php53 (RHSA-2011:0196)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0196 advisory. - php: DoS in filtervar via long email string CVE-2010-3710 - php information disclosure via mbstrcut CVE-2010-4156 - php: hang on numeric...
RHEL 4 : HelixPlayer removal (Critical) (RHSA-2010:0981)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2010:0981 advisory. - HelixPlayer multiple flaws CVE-2010-2997, CVE-2010-4375, CVE-2010-4378, CVE-2010-4379, CVE-2010-4382, CVE-2010-4383, CVE-2010-4385,...
RHEL 5 : openssl (RHSA-2010:0162)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0162 advisory. - openssl: missing bnwexpand return value checks CVE-2009-3245 - TLS: MITM attacks via session renegotiation CVE-2009-3555 - openssl: crash...
RHEL 5 : vim (RHSA-2008:0580)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0580 advisory. - vim format string flaw CVE-2007-2953 - vim: command execution via scripts not sanitizing inputs to execute and system CVE-2008-2712 - Vim...
FLEXnet Connect Update Service Agent ActiveX (isusweb.dll) Overflow
Macrovision FLEXnet Connect, formerly known as InstallShield Update Service, is installed on the remote host. It is a software management solution for internally-developed and third-party applications, and may have been installed as part of the FLEXnet Connect SDK, other InstallShield software, o...
RHEL 4 : firefox (RHSA-2006:0610)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2006:0610 advisory. Mozilla Firefox is an open source Web browser. The Mozilla Foundation has discontinued support for the Mozilla Firefox 1.0 branch. This upda...
RHEL 4 : gdb (RHSA-2005:709)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:709 advisory. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a controlled fashion, then...
RHEL 4 : kernel (RHSA-2005:366)
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:366 advisory. The Linux kernel handles the basic functions of the operating system. A flaw in the fibseqstart function was discovered. A local user could u...