DEBIAN-CVE-2008-4306

Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...

CVE-2008-4306

Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...

CVE-2008-4306

Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...

Buffer overflow

Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...

DEBIAN-CVE-2008-4326

The PMAescapeJsString function in libraries/jsescape.lib.php in phpMyAdmin before 2.11.9.2, when Internet Explorer is used, allows remote attackers to bypass cross-site scripting XSS protection mechanisms and conduct XSS attacks via a NUL byte inside a "/script" sequence...

DATAC RealWin 2.0 SCADA Software - Remote PreaAuth Exploit

Hi --------------------------------- http://www.dataconline.com/software/realwin.php "RealWin is a SCADA server product which includes a FlexView HMI and runs on current Microsoft Windows platforms 2000 and XP. It can operate on a single PC or multiple PCs connected through a TCP/IP network. It...

CVE-2008-3612

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...

Design/Logic Flaw

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...

CVE-2008-3612

The CVE-2008-3612 entry affects Apple iPod touch 2.0–2.0.2 and iPhone 2.0–2.0.2, where the Networking subsystem uses predictable TCP initial sequence numbers. This design allows remote attackers to spoof or hijack TCP connections. Documented impact includes potential spoofing and session hijackin...

PT-2008-4988 · Apple · Iphone +1

Name of the Vulnerable Software and Affected Versions: Apple iPod touch versions 2.0 through 2.0.2 Apple iPhone versions 2.0 through 2.0.2 Description: The issue is related to the Networking subsystem, which uses predictable TCP initial sequence numbers. This allows remote attackers to potentiall...

FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc ADV FreeBSD-SA-06:11.ipsec.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft...

FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

FreeBSD Security Advisory (FreeBSD-SA-05:15.tcp.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:15.tcp.asc ADV FreeBSD-SA-05:15.tcp.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Security Advisory (FreeBSD-SA-04:04.tcp.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:04.tcp.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapshot, allows remote authenticated users to obtain access to arbitrary SELinux roles by appending a :/ colon slash sequence, followed by the ro...

CVE-2008-2636

The HTTP service on the Cisco Linksys WRH54G with firmware 1.01.03 allows remote attackers to cause a denial of service management interface outage or possibly execute arbitrary code via a URI that begins with a "/./" sequence, contains many instances of a "frontpage" sequence, and ends with a...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in Nuke ET 3.2 and 3.4 allow remote attackers to perform actions as administrators, as demonstrated by inserting an XSS sequence into a document...

CVE-2008-1719

Multiple cross-site request forgery CSRF vulnerabilities in Nuke ET 3.2 and 3.4 allow remote attackers to perform actions as administrators, as demonstrated by inserting an XSS sequence into a document...

Home FTP Server DoS

Some command sequence causes service to crash...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the web interface on the central phone server for the Snom 320 SIP Phone allow remote attackers to perform actions as the phone user, as demonstrated by inserting an address-book entry containing an XSS sequence...