Ubuntu: Security Advisory (USN-1987-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Wordpess Simple Photo Gallery 1.7.8 Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpess Simple Photo Gallery Blind SQL Injection Date: 12-05-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/simple-photo-gallery/ Version: 1.7.8 Tested on: Apache 2.2.22, PHP 5.3.10 OSVDB ID :...

Tincd Post-Authentication Remote TCP Stack Buffer Overflow Exploit

This Metasploit module exploits a stack buffer overflow in Tinc's tincd service. After authentication, a specially crafted tcp packet default port 655 leads to a buffer overflow and allows to execute arbitrary code. This Metasploit module has been tested with tinc-1.1pre6 on Windows XP custom cal...

Tincd Post-Authentication Remote TCP Stack Buffer Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'securerandom' class Metasploit3 'Tincd Post-Authentication Remote TCP Stack Buffer Overflow', 'Description' = %q This module exploits a stack...

City Directory Review and Rating Script (search.php) SQL Injection Vulnerability

No description provided by source. Exploit Title: City Directory Review and Rating Script SQL Injection Vulnerability Date: 22.12.2012 Author: 3spi0n Script Vendor or Software Link: http://b-scripts.com/en/18-city-reviewer-yelp-clone.html Category: WebApps Type: SQL Injection MySQLi Tested On:...

USN-2211-1: libXfont vulnerabilities

Ilja van Sprundel discovered that libXfont incorrectly handled font metadata file parsing. A local attacker could use this issue to cause libXfont to crash, or possibly execute arbitrary code in order to gain privileges. CVE-2014-0209 Ilja van Sprundel discovered that libXfont incorrectly handled...

Ubuntu Update for cinder USN-2208-1

Check for the Version of cinder OpenVAS Vulnerability Test $Id: gbubuntuUSN22081.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for cinder USN-2208-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...

Ubuntu Update for quantum USN-2208-2

Check for the Version of quantum OpenVAS Vulnerability Test $Id: gbubuntuUSN22082.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for quantum USN-2208-2 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...

Ubuntu: Security Advisory (USN-2202-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for linux USN-2202-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN22021.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux USN-2202-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

Ubuntu Update for swift USN-2207-1

Check for the Version of swift OpenVAS Vulnerability Test $Id: gbubuntuUSN22071.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for swift USN-2207-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

[USN-2208-1] OpenStack Cinder vulnerability

========================================================================== Ubuntu Security Notice USN-2208-1 May 06, 2014 cinder vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

Ubuntu 12.10 : quantum vulnerability (USN-2208-2)

USN-2208-1 fixed vulnerabilities in OpenStack Cinder. This update provides the corresponding updates for OpenStack Quantum. JuanFra Rodriguez Cardoso discovered that OpenStack Cinder did not enforce SSL connections when Nova was configured to use QPid and qpidprotocol is set to 'ssl'. If a remote...

Ubuntu 12.10 : cinder vulnerability (USN-2208-1)

JuanFra Rodriguez Cardoso discovered that OpenStack Cinder did not enforce SSL connections when Nova was configured to use QPid and qpidprotocol is set to 'ssl'. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. Ubunt...

[USN-2207-1] OpenStack Swift vulnerability

========================================================================== Ubuntu Security Notice USN-2207-1 May 06, 2014 swift vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

USN-2208-2: OpenStack Quantum vulnerability

USN-2208-1 fixed vulnerabilities in OpenStack Cinder. This update provides the corresponding updates for OpenStack Quantum. Original advisory details: JuanFra Rodriguez Cardoso discovered that OpenStack Cinder did not enforce SSL connections when Nova was configured to use QPid and qpidprotocol i...

USN-2208-1: OpenStack Cinder vulnerability

JuanFra Rodriguez Cardoso discovered that OpenStack Cinder did not enforce SSL connections when Nova was configured to use QPid and qpidprotocol is set to 'ssl'. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could be exploited to view sensitive information...

USN-2205-1: LibTIFF vulnerabilities

Pedro Ribeiro discovered that LibTIFF incorrectly handled certain malformed images when using the gif2tiff tool. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could crash the application, leading to a denial of service, or possibly execut...

Ubuntu Update for qemu USN-2182-1

Check for the Version of qemu OpenVAS Vulnerability Test $Id: gbubuntuUSN21821.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for qemu USN-2182-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Ubuntu Update for dpkg USN-2183-1

Check for the Version of dpkg OpenVAS Vulnerability Test $Id: gbubuntuUSN21831.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for dpkg USN-2183-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...