Mandrake Linux Security Advisory : cfengine (MDKSA-2000:061)

The GNU cfengine is an abstract programming language for system administrators of large heterogeneous networks, used for maintenance and administration. There are a number of string format vulnerabilities in syslog calls that can be abused to either make the cfengine program segfault and die or t...

Juniper Junos lo0 Firewall Bypass (PSN-2012-07-651)

According to its self-reported version number, the remote Junos router has a firewall bypass vulnerability. This issue is present when log or syslog actions are used along with discard within a firewall filter term deployed on the lo0 loopback interface. When the receive rate is very high, some...

CentOS 6 : rsyslog (CESA-2012:0796)

Updated rsyslog packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

RedHat Update for rsyslog RHSA-2011:1247-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

php: zend_strndup() NULL pointer dereference may cause DoS

PHP 5.3.8 does not always check the return value of the zendstrndup function, which might allow remote attackers to cause a denial of service NULL pointer dereference and application crash via crafted input to an application that performs strndup operations on untrusted string data, as demonstrat...

sos security, bug fix, and enhancement update

2.2-29.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove RH ftp URL and support email - add...

Bluetooth scanner: Bluelog

Bluelog is a Linux Bluetooth scanner written to do a single task, log devices that are in discoverable mode. It is intended to be used as a site survey tool, determining how many discoverable Bluetooth devices there are in the area. It has also proven to be very well suited to Bluetooth traffic...

CVE-2012-3058

Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.4 before 8.44.1, 8.5 before 8.51.11, and 8.6 before 8.61.3 allow remote attackers to cause a denial of service device reload via IPv6 transit traffi...

Code injection

Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.4 before 8.44.1, 8.5 before 8.51.11, and 8.6 before 8.61.3 allow remote attackers to cause a denial of service device reload via IPv6 transit traffi...

CVE-2012-3058

Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.4 before 8.44.1, 8.5 before 8.51.11, and 8.6 before 8.61.3 allow remote attackers to cause a denial of service device reload via IPv6 transit traffi...

PT-2012-4462 · Cisco · Cisco Asa +2

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.4 before 8.44.1 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.5 before 8.51.11 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8...

Cisco ASA 5500 Series Multiple Vulnerabilities (cisco-sa-20120314-asa)

The remote Cisco ASA is missing a security patch and may be affected by the following issues : - When UDP inspection is enabled, inspecting malformed transit traffic could cause the device to reload. CVE-2012-0353 - When the Threat Detection feature is configured with the Scanning Threat Mode...

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module Advisory ID: cisco-sa-20120314-asa Revision 1.0 For Public Release 2012 March 14 16:00 UTC GMT...

Design/Logic Flaw

Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.4 before 8.42.11 and 8.5 before 8.51.4 allow remote attackers to cause a denial of service device reload via 1 IPv4 or 2 IPv6 packets that trigger...

CVE-2012-0355

Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.4 before 8.42.11 and 8.5 before 8.51.4 allow remote attackers to cause a denial of service device reload via 1 IPv4 or 2 IPv6 packets that trigger...

PT-2012-2516 · Cisco · Cisco Asa +2

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices versions 8.4 before 8.42.11 Cisco Adaptive Security Appliances ASA 5500 series devices and the ASA Services...

Debian Security Advisory DSA 2383-1 (super)

The remote host is missing an update to super announced via advisory DSA 2383-1. OpenVAS Vulnerability Test $Id: deb23831.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2383-1 super Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Null pointer dereference

PHP 5.3.8 does not always check the return value of the zendstrndup function, which might allow remote attackers to cause a denial of service NULL pointer dereference and application crash via crafted input to an application that performs strndup operations on untrusted string data, as demonstrat...

DEBIAN-CVE-2011-2776

Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...

CVE-2011-2776

Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...