13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-0789
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint...
Linux Distros Unpatched Vulnerability : CVE-2010-2548
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IcedTea6 before 1.7.4 does not properly check property access, which allows unsigned apps to read and write arbitrary files. CVE-2010-2548 Note that Nessus reli...
Linux Distros Unpatched Vulnerability : CVE-2009-0164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The web interface for CUPS before 1.3.10 does not validate the HTTP Host header in a client request, which makes it easier for remote attackers to conduct DNS...
Linux Distros Unpatched Vulnerability : CVE-2008-4191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file...
Linux Distros Unpatched Vulnerability : CVE-2011-3326
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ospfflood function in ospfflood.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via an invalid Link...
Linux Distros Unpatched Vulnerability : CVE-2011-0002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libuser before 0.57 uses a cleartext password value of 1 !! or 2 x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by...
Linux Distros Unpatched Vulnerability : CVE-2011-4967
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tog-Pegasus has a package hash collision DoS vulnerability CVE-2011-4967 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2010-4312
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to hijack a...
Linux Distros Unpatched Vulnerability : CVE-2004-2680
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - modpython libapache2-mod-python 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to...
Linux Distros Unpatched Vulnerability : CVE-2010-4037
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Google Chrome before 7.0.517.41 allows remote attackers to bypass the pop-up blocker via unknown vectors. CVE-2010-4037 Note that...
Linux Distros Unpatched Vulnerability : CVE-2011-3970
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2010-4525
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvmvcpuevents-interrupt.pad structure member, which allows local users to obtain potentially sensitive...
Linux Distros Unpatched Vulnerability : CVE-2006-4336
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer underflow in the buildtree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table...
Linux Distros Unpatched Vulnerability : CVE-2010-2422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to inject arbitrary web...
Linux Distros Unpatched Vulnerability : CVE-2011-4355
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Project Debugger GDB before 7.5, when .debuggdbscripts is defined, automatically loads certain files from the current working directory, which allows local...
Linux Distros Unpatched Vulnerability : CVE-2006-7246
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. CVE-2006-7246 Note that Nessus relies on the presence...
Linux Distros Unpatched Vulnerability : CVE-2011-2998
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary co...
Linux Distros Unpatched Vulnerability : CVE-2011-2511
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in libvirt before 0.9.3 allows remote authenticated users to cause a denial of service libvirtd crash and possibly execute arbitrary code via a...
Linux Distros Unpatched Vulnerability : CVE-2002-2439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the new operator in gcc before 4.8.0 allows attackers to have unspecified impacts. CVE-2002-2439 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2007-2030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked...