477 matches found
Format string
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the 1 pharstreamflush, 2...
CVE-2010-2094
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the 1 pharstreamflush, 2...
Debian: Security Advisory (DSA-2042-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Format string
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b, and 1.5 allow 1 remote attackers to execute arbitrary code via format string specifiers in a GET request to the HTTP server component when logging is enabled, and allow 2 remote authenticated users t...
CVE-2009-4769
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b, and 1.5 allow 1 remote attackers to execute arbitrary code via format string specifiers in a GET request to the HTTP server component when logging is enabled, and allow 2 remote authenticated users t...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
Format string
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
DEBIAN-CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
CVE-2010-0743 affects scsi-target-utils (tgt) and iSCSI Enterprise Target (iscsitarget) via a format-string vulnerability in isns.c that can trigger a denial of service (tgtd daemon crash) or other impact. Vulnerable versions include tgt 1.0.3, 0.9.5 and earlier, and iscsitarget 0.4.16. The issue...
Debian DSA-1877-1 : mysql-dfsg-5.0 - denial of service/execution of arbitrary code
In MySQL 4.0.0 through 5.0.83, multiple format string vulnerabilities in the dispatchcommand function in libmysqld/sqlparse.cc in mysqld allow remote authenticated users to cause a denial of service daemon crash and potentially the execution of arbitrary code via format string specifiers in a...
Format string
Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to have an unspecified impact via vectors involving 1 check scripts and 2 the Lintian::Schedule module...
CVE-2009-4014
Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to have an unspecified impact via vectors involving 1 check scripts and 2 the Lintian::Schedule module...
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1979-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 27, 2009 http://www.debian.org/security/faq -...
CVE-2009-4014
Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to have an unspecified impact via vectors involving 1 check scripts and 2 the Lintian::Schedule module...
[Backports-security-announce] Security Update for lintian
Raphael Geissert uploaded new packages for lintian which fixed the following security problems: CVE-2009-4013: missing control files sanitation Control field names and values were not sanitised before using them in certain operations that could lead to directory traversals. Patch systems control...
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1979-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 27, 2009 http://www.debian.org/security/faq -...
openSUSE 10 Security Update : libmysqlclient-devel (libmysqlclient-devel-6360)
the COMCREATEDB and COMDROPDB suffered from format string vulnerabilities CVE-2009-2446 - the command line client was prone to cross-site scripting XSS attacks CVE-2008-4456 - fix slave reconnect %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...