Fedora Core 10 FEDORA-2009-2885 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2885. OpenVAS Vulnerability Test $Id: fcore20092885.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-2885 ghostscript Authors: Thomas Reinke Copyright: Copyright c...

Fedora Core 9 FEDORA-2009-2910 (lcms)

The remote host is missing an update to lcms announced via advisory FEDORA-2009-2910. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Fedora Core 9 FEDORA-2009-2883 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2883. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora Core 9 FEDORA-2009-2883 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2883. OpenVAS Vulnerability Test $Id: fcore20092883.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-2883 ghostscript Authors: Thomas Reinke Copyright: Copyright c...

Fedora Core 10 FEDORA-2009-2903 (lcms)

The remote host is missing an update to lcms announced via advisory FEDORA-2009-2903. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Fedora Core 10 FEDORA-2009-2885 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2885. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora Core 10 FEDORA-2009-2970 (lcms)

The remote host is missing an update to lcms announced via advisory FEDORA-2009-2970. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Fedora 9 : ghostscript-8.63-2.fc9 (2009-2883)

Security update for integer overflows CVE-2009-0583 and upper bounds checks CVE-2009-0584 in the ICC profile handling. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

Debian DSA-1745-1 : lcms - several vulnerabilities

Several security issues have been discovered in lcms, a color management library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0581 Chris Evans discovered that lcms is affected by a memory leak, which could result in a denial of service via...

LittleCms lack of upper-bounds check on sizes

Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for th...

lcms security update

1.18-beta1.1.el53.2 - Add patch theoretically preventing division by zero 1.18-beta1.1.el53.1 - Rebase to upstream 1.18beta1 - CVE-2009-0581 LittleCms memory leak - CVE-2009-0723 LittleCms integer overflow - CVE-2009-0733 LittleCms lack of upper-bounds check on sizes - Resolves: 487513...

mod_jk2 v2.0.2 for Apache 2.0 Remote Buffer Overflow Exploit (win32)

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : modjk2 v2.0.2 for Apache 2.0 Win32 Found by : IOActive Security Advisory ----------------------------------------...

Debian Security Advisory DSA 1170-1 (gcc-3.4)

The remote host is missing an update to gcc-3.4 announced via advisory DSA 1170-1. Jürgen Weigert discovered that upon unpacking JAR archives fastjar from the GNU Compiler Collection does not check the path for included files and allows to create or overwrite files in upper directories. OpenVAS...

Directory traversal

F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...

CVE-2007-0187

F5 FirePass 5.4 through 5.5.2 and 6.0 allows remote attackers to access restricted URLs via 1 a trailing null byte, 2 multiple leading slashes, 3 Unicode encoding, 4 URL-encoded directory traversal or same-directory characters, or 5 upper case letters in the domain name...

CVE-2000-0499

BEA WebLogic 3.1.8–4.5.1 is affected. The default configuration allows a remote attacker to view the source code of a JSP program by requesting a URL that exposes the JSP extension in upper case. Root cause: default config enables exposing JSP source. Impact: confidentiality of JSP source could b...

PT-2000-1437 · Bea · Bea Weblogic

Name of the Vulnerable Software and Affected Versions: BEA WebLogic versions 3.1.8 through 4.5.1 Description: The default configuration of the software allows a remote attacker to view the source code of a JSP program. This can be achieved by requesting a URL that provides the JSP extension in...

PT-2000-1435 · Ibm · Ibm Websphere Server

Name of the Vulnerable Software and Affected Versions: IBM WebSphere server version 3.0.2 Description: The issue allows a remote attacker to view the source code of a JSP program. This can be achieved by requesting a URL that provides the JSP extension in upper case. Recommendations: For IBM...