1637 matches found
CVE-2008-3140
CVE-2008-3140 is part of a set of vulnerabilities affecting Wireshark/Ethereal (notably in 1.0.x) that can cause a denial of service (application crash) via crafted packets, with initial description mentioning an incomplete SS7 MSU syslog encapsulated packet as a possible vector. Connected adviso...
Wireshark 1.0.1版本修复多个安全漏洞
BUGTRAQ ID: 30020 Wireshark之前名为Ethereal,是一款非常流行的网络协议分析工具。 Wireshark的1.0.1之前版本解析恶意网络报文时存在多个安全漏洞,可能允许攻击者读取敏感信息或导致拒绝服务。 1 GSM SMS协议解析模块中的漏洞可能导致崩溃。 2 PANA和KISMET协议解析模块中的漏洞可能导致Wireshark退出。 3 RTMPT协议解析模块中的释放后使用漏洞可能导致崩溃。 4 RMI协议解析模块中的漏洞可能导致泄露系统内存。 5 syslog协议解析模块中的漏洞可能允许通过不完整的SS7 MSU syslog封装报文导致崩溃。...
Barracuda Spam Firewall crossite scripting
Crossite scripting with Web Syslog, with web administration login page...
Debian: Security Advisory (DSA-1464-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1464-1 (syslog-ng)
The remote host is missing an update to syslog-ng announced via advisory DSA 1464-1. OpenVAS Vulnerability Test $Id: deb14641.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1464-1 syslog-ng Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Fedora 7 : syslog-ng-2.0.7-1.fc7 (2008-0559)
Contains a security fix for CVE-2007-6437/ZSA-2007-029 DoS Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora 8 : syslog-ng-2.0.7-1.fc8 (2008-0523)
Contains a security fix for CVE-2007-6437/ZSA-2007-029 DoS Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
[SECURITY] Fedora 7 Update: syslog-ng-2.0.7-1.fc7
syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...
[SECURITY] Fedora 8 Update: syslog-ng-2.0.7-1.fc8
syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...
Debian Security Advisory DSA 175-1 (syslog-ng)
The remote host is missing an update to syslog-ng announced via advisory DSA 175-1. OpenVAS Vulnerability Test $Id: deb1751.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 175-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 009-1 (stunnel)
The remote host is missing an update to stunnel announced via advisory DSA 009-1. OpenVAS Vulnerability Test $Id: deb0091.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 009-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian: Security Advisory (DSA-175)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 009-1 (stunnel)
The remote host is missing an update to stunnel announced via advisory DSA 009-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 513-1 (log2mail)
The remote host is missing an update to log2mail announced via advisory DSA 513-1. OpenVAS Vulnerability Test $Id: deb5131.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 513-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-1464-1 : syslog-ng - NULL pointer dereference
Oriol Carreras discovered that syslog-ng, a next generation logging daemon can be tricked into dereferencing a NULL pointer through malformed timestamps, which can lead to denial of service and the disguise of an subsequent attack, which would otherwise be logged. %NASLMINLEVEL 70300 C Tenable...
[SECURITY] [DSA 1464-1] New syslog-ng packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1464-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 15, 2008 http://www.debian.org/security/faq -...
DSA-1464-1 syslog-ng - denial of service
Bulletin has no description...
Format string
The Platform Service Process asampsp in Fan-Out Driver Platform Services for Novell Identity Manager IDM 3.5.1 allows remote attackers to cause a denial of service daemon crash via unspecified network traffic that triggers a syslog message containing invalid format string specifiers, as...
CVE-2007-6625
The Platform Service Process asampsp in Fan-Out Driver Platform Services for Novell Identity Manager IDM 3.5.1 allows remote attackers to cause a denial of service daemon crash via unspecified network traffic that triggers a syslog message containing invalid format string specifiers, as...
GLSA-200712-19 : Syslog-ng: Denial of Service
The remote host is affected by the vulnerability described in GLSA-200712-19 Syslog-ng: Denial of Service Oriol Carreras reported a NULL pointer dereference in the logmsgparse function when processing timestamps without a terminating whitespace character. Impact : A remote attacker could send a...