3816 matches found
Apache mod_authnz_external: SQL injection
Background modauthnzexternal is a tool for creating custom authentication backends for HTTP basic authentication. Description mysql/mysql-auth.pl in modauthnzexternal does not properly sanitize input before using it in an SQL query. Impact A remote attacker could exploit this vulnerability to...
Asterisk: Multiple vulnerabilities
Background Asterisk is an open source telephony engine and toolkit. Description Multiple vulnerabilities have been discovered in Asterisk. Please review the CVE identifiers referenced below for details. Impact An unauthenticated remote attacker may execute code with the privileges of the Asterisk...
Pidgin: Multiple vulnerabilities
Background Pidgin is a client for a variety of instant messaging protocols. Description Multiple vulnerabilities were found in Pidgin: Yuriy Kaminskiy reported that the OSCAR protocol implementation in Pidgin misinterprets the ICQWebMessage message type as the ICQSMS message type, triggering an...
Nagios: Execution of arbitrary code
Background Nagios is an open source host, service and network monitoring program. Description Multiple vulnerabilities have been reported in Nagios: Paul reported that statuswml.cgi does not properly sanitize shell metacharacters in the 1 ping and 2 traceroute parameters CVE-2009-2288. Nagios doe...
Adobe Reader: User-assisted execution of arbitrary code
Background Adobe Reader formerly Adobe Acrobat Reader is a closed-source PDF reader. Description Multiple vulnerabilities have been discovered in Adobe Reader: Alin Rad Pop of Secunia Research reported a heap-based buffer overflow when processing PDF files containing a malformed JBIG2 symbol...
Opera: Multiple vulnerabilities
Background Opera is a fast web browser that is available free of charge. Description Multiple vulnerabilities were discovered in Opera: Vitaly McLain reported a heap-based buffer overflow when processing host names in file:// URLs CVE-2008-5178. Alexios Fakos reported a vulnerability in the HTML...
git: Multiple vulnerabilties
Background GIT - the stupid content tracker, the revision control system used by the Linux kernel team. Description Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell...
Adobe Reader: User-assisted execution of arbitrary code
Background Adobe Reader formerly Adobe Acrobat Reader is a closed-source PDF reader. Description An unspecified vulnerability can be triggered by a malformed PDF document, as demonstrated by 2008-HI2.pdf CVE-2008-2549. Peter Vreugdenhil, Dyon Balding, Will Dormann, Damian Frizza, and Greg MacManu...
eGroupWare: Multiple vulnerabilities
Background eGroupWare is a suite of web-based group applications including calendar, address book, messenger and email. Description A vulnerability has been reported in FCKEditor due to the way that file uploads are handled in the file editor/filemanager/upload/php/upload.php when a filename has...
PowerDNS Recursor: DNS Cache Poisoning
Background The PowerDNS Recursor is an advanced recursing nameserver. Description Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values and the UDP source port numbers CVE-2008-1637. Thomas Biege of SUSE pointed out that a prior fix to resolve this iss...
KOffice, KWord, KPDF, KDE Graphics Libraries: Stack-based buffer overflow
Background KOffice is an integrated office suite for KDE. KWord is the KOffice word processor. KPDF is a KDE-based PDF viewer included in the kdegraphics package. Description KPDF includes code from xpdf that is vulnerable to an integer overflow in the StreamPredictor::StreamPredictor function...
BEA JRockit: Multiple vulnerabilities
Background BEA JRockit provides tools, utilities, and a complete runtime environment for developing and running applications using the Java programming language. Description An integer overflow vulnerability exists in the embedded ICC profile image parser CVE-2007-2788, an unspecified vulnerabili...
Mozilla products: Multiple vulnerabilities
Background Mozilla Firefox is an open-source web browser from the Mozilla Project, and Mozilla Thunderbird an email client. The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as the 'Mozilla Application Suite'...
Sun JDK/JRE: Multiple vulnerabilities
Background The Sun Java Development Kit JDK and the Sun Java Runtime Environment JRE provide the Sun Java platform. Description An unspecified vulnerability involving an "incorrect use of system classes" was reported by the Fujitsu security team. Additionally, Chris Evans from the Google Security...
MIT Kerberos 5: Arbitrary remote code execution
Background MIT Kerberos 5 is a suite of applications that implement the Kerberos network protocol. Description The Kerberos telnet daemon fails to properly handle usernames allowing unauthorized access to any account CVE-2007-0956. The Kerberos administration daemon, the KDC and possibly other...
PHP: Integer overflow
Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description A flaw in the PHP memory handling routines allows an unserialize call to be executed on non-allocated memory due to a previous integer...
OpenSSH: Denial of service
Background OpenSSH is a free suite of applications for the SSH protocol, developed and maintained by the OpenBSD project. Description Tavis Ormandy of the Google Security Team discovered a Denial of Service vulnerability in the SSH protocol version 1 CRC compensation attack detector. Impact A...
Apache: Off-by-one flaw in mod_rewrite
Background The Apache HTTP server is one of the most popular web servers on the Internet. The Apache module modrewrite provides a rule-based engine to rewrite requested URLs on the fly. Description An off-by-one flaw has been found in Apache's modrewrite module by Mark Dowd of McAfee Avert Labs...
libpng: Numerous vulnerabilities
Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several other programs, including web browsers and potentially server processes. Description libpng contains numerous vulnerabilities including null pointer dereference errors and boundary...
Pure-FTPd: Potential DoS when maximum connections is reached
Background Pure-FTPd is a fast, production-quality and standards-compliant FTP server. Description Pure-FTPd contains a bug in the acceptclient function handling the setup of new connections. Impact When the maximum number of connections is reached an attacker could exploit this vulnerability to...
Multiple OpenSSL Vulnerabilities
Background The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols as well as a full-strength general purpose cryptography library...
Apache: buffer overflows and a possible information disclosure
Background The Apache HTTP Server is one of the most popular web servers on the Internet. Description Multiple stack-based buffer overflows in modalias and modrewrite allow attackers who can create or edit configuration files including .htaccess files, to cause a denial of service and execute...
Ruby on Rails: Remote Code Execution
Background Ruby on Rails is a free web framework used to develop database-driven web applications. Description Multiple vulnerabilities have been discovered in Ruby on Rails. Please review the CVE identifiers referenced below for details. Impact When serialized columns that use YAML the default a...
intel-microcode: Multiple Vulnerabilities
Background Intel IA32/IA64 microcode update data. Description Multiple vulnerabilities have been discovered in NVIDIA Drivers. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround a...
Minecraft Server: Remote Code Execution
Background Minecraft Server is the official server for the sandbox video game. Description A vulnerability has been discovered in Minecraft Server. Please review the CVE identifier referenced below for details. Impact Vulnerable Minecraft Server versions include a bundled version of log4j which i...
ConnMan: Multiple Vulnerabilities
Background ConnMan provides a daemon for managing Internet connections. Description Multiple vulnerabilities have been discovered in ConnMan. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no kno...
RPM: Multiple Vulnerabilities
Background The Red Hat Package Manager RPM is a command line driven package management system capable of installing, uninstalling, verifying, querying, and updating computer software packages. Description Multiple vulnerabilities have been discovered in RPM. Please review the CVE identifiers...
Logcheck: Root privilege escalation
Background Logcheck mails anomalies in the system logfiles to the administrator. Description The pkgpostinst phase of the Logcheck ebuilds recursively chown the /etc/logcheck and /var/lib/logcheck directories. If the logcheck adds hardlinks to other files in these directories, the chown call will...
Oracle JDK/JRE: Multiple vulnerabilities
Background Java Platform, Standard Edition Java SE lets you develop and deploy Java applications on desktops and servers, as well as in today's demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today's applications...
MIT Kerberos 5: Denial of service
Background The MIT Kerberos 5 implementation provides a command line telnet client which is used for remote login via the telnet protocol. Description It was discovered that MIT Kerberos network authentication system, krb5, did not properly handle ASN.1-encoded Kerberos messages. Impact A remote...
GPL Ghostscript: Multiple vulnerabilities
Background Ghostscript is an interpreter for the PostScript language and for PDF. Description Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workarou...
Mozilla Thunderbird: Multiple vulnerabilities
Background Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the referenced Mozilla Foundation Security Advisories and CVE identifiers below for details. Impact A remo...
ClamAV: Multiple vulnerabilities
Background ClamAV is a GPL virus scanner. Description Multiple vulnerabilities have been discovered in ClamAV. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause ClamAV to scan a specially crafted file, possibly resulting in execution of arbitrary...
evilvte: User-assisted execution of arbitrary code
Background VTE based, highly customizable terminal emulator Description Steve Kemp of Debian identified a flaw in evilvte which does not properly validate hypertext links. Please review the Debian bug report referenced below. Impact Remote attackers could execute arbitrary code by enticing a user...
Deluge: Remote execution of arbitrary code
Background Deluge is a BitTorrent client. Description A CSRF vulnerability was discovered in the web UI of Deluge. Impact A remote attacker could entice a user currently logged in into Deluge web UI to visit a malicious web page which uses forged requests to make Deluge download and install a...
Firewalld: Improper authentication methods
Background Firewalld provides a dynamically managed firewall with support for network/firewall zones to define the trust level of network connections or interfaces. Description A flaw in Firewalld allows any locally logged in user to tamper with or change firewall settings. This is due to how...
Firejail: Multiple vulnerabilities
Background A SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. Description Multiple vulnerabilities have been discovered in Firejail. Please review the CVE identifiers referenced below f...
elfutils: Heap-based buffer overflow
Background Elfutils provides a library and utilities to access, modify and analyse ELF objects. Description An integer overflow, in the checksection function of dwarfbeginelf.c, in the libdw library can lead to a heap-based buffer overflow. Impact A remote attacker could entice a user to open a...
SQLite: Multiple vulnerabilities
Background SQLite is a C library that implements an SQL database engine. Description Multiple vulnerabilities have been discovered in SQLite. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the...
libpng: Multiple vulnerabilities
Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several other programs, including web browsers and potentially server processes. Description Multiple vulnerabilities were found in libpng. Please review the referenced CVE’s for additional...
phpMyAdmin: Multiple vulnerabilities
Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact A remote authenticated attacker could exploit these vulnerabilities to include...
libpng: User-assisted execution of arbitrary code
Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several programs, including web browsers and potentially server processes. Description Two vulnerabilities have been discovered in libpng: The pnguserversioncheck function contains an...
MySQL, MariaDB: Multiple vulnerabilities
Background MySQL is a popular multi-threaded, multi-user SQL server. MariaDB is an enhanced, drop-in replacement for MySQL. Description Multiple unspecified vulnerabilities have been discovered in MySQL. Please review the CVE identifiers referenced below for details. Impact A remote attacker coul...
Openfire: Multiple vulnerabilities
Background Openfire is a real time collaboration RTC server. Description Multiple vulnerabilities have been discovered in Openfire. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly cause a Denial of Service condition or bypass security...
polkit, Spice-Gtk, systemd, HPLIP, libvirt: Privilege escalation
Background polkit is a toolkit for managing policies relating to unprivileged processes communicating with privileged processes. Description polkit has a race condition which potentially allows a process to change its UID/EUID via suid or pkexec before authentication is completed. Impact A local...
Crack: Arbitrary code execution
Background Crack is a really simple JSON and XML parsing Ruby gem, ripped from Merb and Rails. Description An XML parameter parsing vulnerability has been discovered in Crack. Impact A remote attacker could execute arbitrary code with the privileges of the process, cause a Denial of Service...
pip: Multiple vulnerabilities
Background pip is a tool for installing and managing Python packages. Description Multiple vulnerabilities have been discovered in pip. Please review the CVE identifiers referenced below for details. Impact A remote attacker could conduct a Man-in-the-Middle attack to cause pip to execute arbitra...
Wireshark: Multiple vulnerabilities
Background Wireshark is a versatile network protocol analyzer. Description Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process ...
NVIDIA Drivers: Privilege escalation
Background The NVIDIA drivers provide X11 and GLX support for NVIDIA graphic boards. Description Two vulnerabilities have been discovered in NVIDIA drivers: A vulnerability has been found in the way NVIDIA drivers handle read/write access to GPU device nodes, allowing access to arbitrary system...
MantisBT: Multiple vulnerabilities
Background MantisBT is a PHP/MySQL/Web based bugtracking system. Description Multiple vulnerabilities have been discovered in MantisBT. Please review the CVE identifiers referenced below for details. Impact A remote attacker could exploit these vulnerabilities to conduct directory traversal...