Fedora 11 : rt3-3.8.2-12.fc11 (2009-12827)

Fri Dec 4 2009 Ralf Corsepius - 3.8.2-12 - Add rt-3.8.2-rh-bz543962.diff BZ 543962. - Tue Oct 13 2009 Ralf Corsepius - 3.8.2-11 - Update rt-3.8.2-rh-bz526870.diff. - Mon Oct 12 2009 Ralf Corsepius - 3.8.2-10 - Add rt-3.8.2-rh-bz526870.diff BZ 526870. - Wed Jun 24 2009 Ralf Corsepius - 3.8.2-9 -...

Multiple Vendor - TLS Protocol Session Renegotiation Security

Multiple Vendor - TLS Protocol Session Renegotiation Security include include include include include include include include include include include void failconst char proc perrorproc; exit1; void setupserver int sock, int port struct sockaddrin sa; int s, r, i; s = socketAFINET, SOCKSTREAM, 0;...

SSL MITM Vulnerability

No description provided by source. include errno.h include stdio.h include string.h include unistd.h include sys/time.h include sys/socket.h include netinet/in.h include arpa/inet.h include netdb.h include openssl/ssl.h include openssl/ssl3.h void failconst char proc perrorproc; exit1; void...

Master of advanced clever change settings enhanced 3 3 8 9 intrusion-vulnerability warning-the black bar safety net

Many of my friends using the input by 3 3 8 9 port someone else's Server, be found in connection to the other machine, not like the network computer that can pass each file, which to a large extent, so that after the attack greatly reduced, in fact, hit on Microsoft's own“patch”can fix this...

MDVA-2009:166 : setup

There was a small typo in /etc/services conserning the xmpp services. This update addresses this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. This script...

Xerver HTTP Server 4.32 - Remote Denial of Service

Xerver HTTP Server 4.32 - Remote Denial of Service Xerver HTTP Server = v4.32 Remote Denial of Service Found By: DrIDE Download: http://www.javascript.nu/xerver Tested On: Windows XPSP3 - Description - Xerver v4.32 is a Windows based HTTP server. This is the latest version of the application...

SMB NativeLanMan

It is possible to extract OS, domain and SMB server information from the Session Setup AndX Response packet which is generated during NTLM authentication. SPDX-FileCopyrightText: 2009 LSS SPDX-FileCopyrightText: New detection methods / pattern / code since 2009 Greenbone AG Some text descriptions...

Xerver HTTP Server 4.32 - Remote Denial of Service

Xerver HTTP Server = v4.32 Remote Denial of Service Found By: DrIDE Download: http://www.javascript.nu/xerver Tested On: Windows XPSP3 - Description - Xerver v4.32 is a Windows based HTTP server. This is the latest version of the application available. Xerver v4.32 is vulnerable to a remote denia...

Installshield 2009 File Overwrite

""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" """ :::::: :: :: :: :: :: :::: """ """ :: :: :: :: :::::: .. :::: :: """ """ ::::: ::: ::::: :: :: :: :: :: :::: """ """ :: :: :: :: : :: :: :: :: :: :: """ """ :::::: :: :: ::::: :: :::::: :: :: :::: rs.ir """ """ :: """ """ """...

ecryptfs-utils: potential provided password disclosure in the process table

The 1 ecryptfs-setup-private, 2 ecryptfs-setup-confidential, and 3 ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...

CVE-2008-7141

Cross-site scripting XSS vulnerability in setup.php in @lex Poll 2.1 allows remote attackers to inject arbitrary web script or HTML via the languagesetup parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2008-7140

Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...

RealNetworks Helix Server RTSP SETUP Request Denial of Service (CVE-2009-2534)

Helix Server is a multi-media server that is designed to serve streaming and static audio and video content. A denial of service vulnerability has been reported in RealNetworks Helix Server. The vulnerability is due to an error in the way RealNetworks Helix Server handles SETUP requests. A remote...

MDVA-2009:105 : fuse

FUSE default setup was requiring non privileged users to be added manually to fuse group to be able to use fuse feature and this feature was not available immediatly after fuse package installation. This package updates ensure fuse is now immediatly available after package installation and for al...

RealNetworks Helix Server 12.x Multiple DoS

Binary data 5100.prm...

RealNetworks Helix Server < 13.0.0 Multiple Remote DoS

According to its banner, The remote host is running version 12.x of RealNetworks Helix Server / Helix Mobile Server. Such versions are reportedly affected by multiple issues : - By sending a specially crafted 'RTSP' SETPARAMETERS request with a 'DataConvertBuffer' parameter and either no...

Denial of service

RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allow remote attackers to cause a denial of service daemon crash via an RTSP SETUP request that 1 specifies the / URI or 2 lacks a / character in the URI...

CVE-2009-2534

CVE-2009-2534 affects RealNetworks Helix Server and Helix Mobile Server prior to 13.0.0. The DoS arises from handling RTSP SETUP requests: if the request URI lacks a "/" character (or in some cases a malformed path), the server crashes, potentially terminating the process. Core Security’s CORE-20...

CORE-2009-0227: Real Helix DNA RTSP and SETUP request handler vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Real Helix DNA RTSP and SETUP request handler vulnerabilities 1. Advisory Information Title: Real Helix DNA RTSP and SETUP request handler vulnerabilities Advisory ID...