17 matches found
EUVD-2013-7076
Malware in sbrugna...
Mageia: Security Advisory (MGASA-2014-0072)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated tntnet packages fix security vulnerability
A flaw in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests CVE-2013-7299...
MGASA-2014-0072 Updated tntnet packages fix security vulnerability
A flaw in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests CVE-2013-7299...
Fedora 20 : tntnet-2.2.1-2.fc20 (2014-1619)
Own the %datadir/tntnet dir. this is a security update that fixes the following bug : https://bugzilla.redhat.com/showbug.cgi?id=1055374 Bug 1055374 CVE-2013-7299 tntnet: information leak via crafted HTTP request Note that Tenable Network Security has extracted the preceding description block...
Fedora Update for tntnet FEDORA-2014-1619
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for tntnet FEDORA-2014-1619
Check for the Version of tntnet OpenVAS Vulnerability Test Fedora Update for tntnet FEDORA-2014-1619 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
DEBIAN-CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
UBUNTU-CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
Information disclosure
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
CVE-2013-7299
CVE-2013-7299 affects Tntnet before 2.2.1. A flaw in the HTTP header handling allows remote attackers to obtain sensitive information by sending a crafted header ending with a newline instead of CRLF, preventing a null terminator from being added and causing Tntnet to include headers from other r...
CVE-2013-7299
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator from being added and causes Tntnet to include headers from other requests...
Tntnet HTTP报文头泄露漏洞
BUGTRAQ ID: 65025 CVECAN ID: CVE-2013-7299 Tntnet 是一个Web应用服务器,可使用C++来编写Web应用。 Tntnet 2.2及其他版本处理HTTP报文头时出错,这可使远程攻击者劫持有效用户会话。攻击者通过发送特制的HTTP请求,该请求附加了之前请求的报文头,则可通过HTTP身份验证配置,劫持用户账户,获取权限。 0 TNTNET tntnet 厂商补丁: TNTNET ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.tntnet.org/...