Mandriva Linux Security Advisory : freeradius (MDVSA-2012:159)

A vulnerability has been found and corrected in freeradius : Stack-based buffer overflow in the cbtlsverify function in FreeRADIUS 2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote attackers to cause a denial of service server crash and possibly execute arbitrary code via a...

Ubuntu Update for eglibc USN-1589-1

Ubuntu Update for Linux kernel vulnerabilities USN-1589-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15891.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for eglibc USN-1589-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu: Security Advisory (USN-1589-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

freeradius2 security update

2.1.12-4 - resolves: bug855315 CVE-2012-3547 freeradius: Stack-based buffer overflow by processing certain expiration date fields of a certificate during x509 certificate validation...

Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : eglibc, glibc vulnerabilities (USN-1589-1)

It was discovered that positional arguments to the printf family of functions were not handled properly in the GNU C Library. An attacker could possibly use this to cause a stack-based buffer overflow, creating a denial of service or possibly execute arbitrary code. CVE-2012-3404, CVE-2012-3405,...

freeradius security update

2.1.12-4 - resolves: bug855316 CVE-2012-3547 freeradius: Stack-based buffer overflow by processing certain expiration date fields of a certificate during x509 certificate validation...

CVE-2012-4415

Stack-based buffer overflow in the guacclientpluginopen function in libguac in Guacamole before 0.6.3 allows remote attackers to cause a denial of service crash or execute arbitrary code via a long protocol name...

SafeNet Sentinel Protection Installer Long Request DoS Vulnerability - Active Check

Sentinel Protection Installer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HP iNode Management Center iNodeMngChecker.exe Multiple Vulnerabilities

HP iNode Management Center is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2012-5002

Vulnerability CVE-2012-5002 affects Ricoh DC Software DL-10 SR10 FTP Server (SR10.exe) version 1.1.0.6. The flaw is a stack-based buffer overflow triggered by a long USER command when the Log file name option is enabled, enabling remote code execution under the FTP user context. Multiple sources ...

CVE-2012-5002

Stack-based buffer overflow in SR10 FTP server SR10.exe 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command...

CVE-2012-1183

Stack-based buffer overflow in the milliwattgenerate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internaltiming option is off, allows remote attackers to cause a denia...

CVE-2012-1184

Stack-based buffer overflow in the astparsedigest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header...

CVE-2012-1183

CVE-2012-1183 affects the Asterisk Miliwatt (milliwatt_generate) in multiple releases: 1.4.x prior to 1.4.44, 1.6.x prior to 1.6.2.23, 1.8.x prior to 1.8.10.1, and 10.x prior to 10.2.1. The flaw is a stack-based buffer overflow in the milliwatt_generate function when the o option is used and inte...

NCMedia Sound Editor Pro 7.5.1 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Sound Editor Pro v7.5.1 Vendor URL: www.soundeditorpro.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2012-08-15 Date published: 2012-09-16 CVSSv2 Score: 6,9...

CentOS Update for quagga CESA-2012:1258 centos5

Check for the Version of quagga OpenVAS Vulnerability Test CentOS Update for quagga CESA-2012:1258 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

CVE-2011-5165

Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file...

CVE-2011-5164

The CVE-2011-5164 entry concerns a stack-based buffer overflow in VanDyke Software AbsoluteFTP. The authenticated/remote issue affects AbsoluteFTP versions 1.9.6 through 2.2.10 and is triggered by a crafted file name in a LIST command response, allowing a remote FTP server to execute arbitrary co...

CVE-2011-5164

Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response...

Scientific Linux Security Update : quagga on SL5.x i386/x86_64 (20120912)

A heap-based buffer overflow flaw was found in the way the bgpd daemon processed malformed Extended Communities path attributes. An attacker could send a specially crafted BGP message, causing bgpd on a target system to crash or, possibly, execute arbitrary code with the privileges of the user...