Oracle Solaris PAM parse_user_name() buffer overflow (CVE-2020-14871)

Binary data solarissshpamcve-2020-14871.nbin...

Fedora 31 : 4:perl (2020-fd73c08076)

Fixed CVE-2020-10543, CVE-2020-10878 and CVE-2020-12723 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Oracle Linux 6 : icu (ELSA-2020-0896)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0896 advisory. 4.2.1-15 - Apply icu.13634.integer.overflow.patch - Apply icu.20958.segv.mapper.patch - Resolves: rhbz1809876 Tenable has extracted the preceding description...

CentOS 7 : kernel (CESA-2019:2600)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RHEL 6 : kernel (RHSA-2019:1488)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1488 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: An integer overflow flaw was found in...

Amazon Linux AMI : kernel (ALAS-2019-1145)

The USB subsystem mishandles size checks during the reading of an extra descriptor, related to usbgetextradescriptor in drivers/usb/core/usb.c.CVE-2018-20169 A flaw was found where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition betwe...

RHEL 7 : libvirt (RHSA-2018:1997)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1997 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In...

ONVIF Stream URI

Nessus was able to retrieve the remote devices video stream URIs by sending GetProfiles and GetStreamUri ONVIF requests. include"compat.inc"; if description scriptid104275; scriptversion"$Revision: 1.1 $"; scriptcvsdate"$Date: 2017/10/31 18:41:24 $"; scriptnameenglish:"ONVIF Stream URI";...

RHEL 6 : kernel (RHSA-2016:2133)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:2133 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A race condition was found in the way...

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-977)

This update for java-170-openjdk fixes the following issues : - Update to 2.6.7 - OpenJDK 7u111 - Security fixes - S8079718, CVE-2016-3458: IIOP Input Stream Hooking bsc989732 - S8145446, CVE-2016-3485: Perfect pipe placement Windows only bsc989734 - S8147771: Construction of static protection...

SUSE SLES11 Security Update : openssh (SUSE-SU-2016:1528-1)

openssh was updated to fix three security issues. These security issues were fixed : - CVE-2016-3115: Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH allowed remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related t...

CentOS 6 / 7 : openssl098e (CESA-2016:0372) (DROWN)

Updated openssl098e packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

Ubuntu 15.10 : linux vulnerabilities (USN-2851-1)

Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the paravirtualized guest could exploit this flaw to cause a denial of service crash the host or potentially execute arbitrary code on the host. CVE-2015-8550...

RHEL 5 : openssl (RHSA-2015:0800) (FREAK)

Updated openssl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...

CentOS 7 : kernel (CESA-2015:0726)

Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...

Opera < 28.0.1750.40 SSL/TLS EXPORT_RSA Ciphers Downgrade MitM (Mac OS X) (FREAK)

The remote Mac OS X host has a version of the Opera web browser installed that is prior to 28.0.1750.40. It is, therefore, affected by a security feature bypass vulnerability, known as FREAK Factoring attack on RSA-EXPORT Keys, due to the support of weak EXPORTRSA cipher suites with keys less tha...

Cisco Wireless LAN Controllers 5500 Series (POODLE)

The remote Cisco Wireless LAN Controller WLC is affected by an information disclosure vulnerability known as POODLE. The vulnerability is due to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block ciphers in cipher block chaining CBC mode. MitM attackers can decry...

OpenSSL 1.0.1 < 1.0.1j Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.1j. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.1j advisory. - OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which...

FireEye Operating System Multiple Vulnerabilities (SB001)

The remote host is running a version of FireEye Operating System FEOS that is affected by multiple vulnerabilities : - An error exists in the function ssl3readbytes function that allows data to be injected into other sessions or allow denial of service attacks. Note that this issue is only...

memcached SASL Authentication Security Bypass

The version of memcached on the remote host has an authentication bypass vulnerability. This flaw is related to the management of the SASL authentication state. With a series of specially crafted requests, a remote attacker can authenticate with invalid SASL credentials. Successful exploitation...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : firefox vulnerabilities (USN-1600-1)

Henrik Skupin, Jesse Ruderman, Christian Holler, Soroush Dalili and others discovered several memory corruption flaws in Firefox. If a user were tricked into opening a specially crafted web page, a remote attacker could cause Firefox to crash or potentially execute arbitrary code as the user...

Dropbear SSH Server Channel Concurrency Use-after-free Remote Code Execution

According to its self-reported banner, the remote host is running a version of Dropbear SSH before 2012.55. As such, it reportedly contains a flaw that might allow an attacker to run arbitrary code on the remote host with root privileges if they are authenticated using a public key and command...

openSUSE Security Update : MozillaFirefox (MozillaFirefox-334)

This update brings the Mozilla Firefox browser to version 3.0.4. It fixes following security issues : CVE-2008-0017 / MFSA 2008-54 : The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for...

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerability (USN-5634-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5634-1 advisory. Domingo Dirutigliano and Nicola Guerrera discovered that the netfilter subsystem in the Linux kernel did not properly handle rules that truncated packets below th...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-035)

The version of kernel installed on the remote host is prior to 5.4.209-116.367. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2022-035 advisory. An out-of-bounds read flaw was found in the Linux kernel's TeleTYpe subsystem. The issue occurs in how a...

FreeBSD : OpenSSL -- Command injection vulnerability (4eeb93bf-f204-11ec-8fbd-d4c9ef517024)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4eeb93bf-f204-11ec-8fbd-d4c9ef517024 advisory. - In addition to the crehash shell command injection identified in CVE-2022-1292, further circumstances...

Oracle Database Server (Apr 2022 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server. The supported version that is affect...

Adobe Illustrator < 25.4.4 / 26.0.0 < 26.0.3 Multiple Vulnerabilities (APSB22-07)

The version of Adobe Illustrator installed on the remote Windows host is prior to 25.4.4, 26.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-07 advisory. - Adobe Illustrator versions 25.4.3 and earlier and 26.0.2 and earlier are affected by a buffer overflo...

RHEL 8 : kpatch-patch (RHSA-2022:0232)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0232 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

macOS 10.15.x < Catalina Security Update 2021-005 Catalina (HT212805)

The remote host is running a version of macOS / Mac OS X that is prior to Catalina Security Update 2021-005. It is, therefore, affected by multiple vulnerabilities, including the following: - Arbitrary code execution when processing a maliciously crafted image. CVE-2021-30835, CVE-2021-30847 - An...

F5 Networks BIG-IP : Python vulnerabilities (K57542514)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.0. It is, therefore, affected by multiple vulnerabilities as referenced in the K57542514 advisory. Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding with an...

Debian DLA-2632-1 : thunderbird security update

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. In adddition a number of security issues were addressed in the OpenPGP support. For Debian 9 stretch, these problems have been fixed in version...

KB5000803: Windows Security Update (March 2021)

The remote Windows host is missing security update 5000803. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-24107, CVE-2021-26869, CVE-2021-26884 - An memory...

RHEL 7 : Satellite 6.7 . (Important) (RHSA-2020:1454)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1454 advisory. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring...

MariaDB 10.2.0 < 10.2.31

The version of MariaDB installed on the remote host is prior to 10.2.31. It is, therefore, affected by a vulnerability as referenced in the 10.2.31 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior,...

Security Updates for Microsoft Visual Studio Products (July 2019)

The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files. An attacker who successfully exploited this...

MySQL 5.7.x < 5.7.26 Multiple Vulnerabilities (Apr 2019 CPU) (Jul 2019 CPU)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.26. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the April 2019 Critical Patch Update advisory: - An unspecified vulnerability in MySQL in the 'Server :...

Scientific Linux Security Update : mariadb on SL7.x x86_64 (20180816)

The following packages have been upgraded to a later upstream version: mariadb 5.5.60. Security Fixes : - mysql: Client programs unspecified vulnerability CPU Jul 2017 CVE-2017-3636 - mysql: Server: DML unspecified vulnerability CPU Jul 2017 CVE-2017-3641 - mysql: Client mysqldump unspecified...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1006-1)

This update for the Linux Kernel 3.12.61-5280 fixes several issues. The following security issues were fixed : - CVE-2017-13166: An elevation of privilege vulnerability was fixed in the kernel v4l2 video driver. bsc1085447. - CVE-2018-1068: A flaw was found in the Linux kernels implementation of...

Fedora 27 : kernel (2018-959aac67a3)

The 4.15.10 update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

JQuery 1.6.x < 1.6.3 XSS

According to the self-reported version in the script, the version of JQuery hosted on the remote web server is 1.6.x prior to 1.6.3. It is, therefore, affected by a cross site scripting vulnerability when using location.hash to select elements. C Tenable Network Security, Inc. include'compat.inc'...

MS16-148: Security Update for Microsoft Office (3204068)

The Microsoft Office application or Microsoft Office Services and Web Apps installed on the remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - An arbitrary command execution vulnerability exists in Microsoft Office due to improper validati...

AIX 6.1 TL 9 : ntp (IV87419) (deprecated)

NTPv3 and NTPv4 are vulnerable to : https://vulners.com/cve/CVE-2015-7974 NTP could allow a remote authenticated attacker to conduct spoofing attacks, caused by a missing key check. An attacker could exploit this vulnerability to impersonate a peer. NTP could allow a local attacker to bypass...

MySQL 5.6.x < 5.6.33 Multiple Vulnerabilities

The version of MySQL running on the remote host is 5.6.x prior to 5.6.33. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the InnoDB subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. CVE-2016-5507 - A flaw...

Amazon Linux AMI : php55 (ALAS-2016-707)

The following security-related issues were resolved : Out-of-bounds read in imagescale CVE-2013-7456 Integer underflow causing arbitrary null write in fread/gzread CVE-2016-5096 The pharmakedirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size...

PHP 7.0.x < 7.0.6 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.6. It is, therefore, affected by multiple vulnerabilities : - A signedness error exists in the GD Graphics library within file gdgd2.c due to improper validation of user-supplied input when handling...

HP System Management Homepage < 7.2.6 Multiple Vulnerabilities (FREAK)

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server is prior to 7.2.6. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several components and third-party libraries : - HP...

VMware vCenter Multiple Vulnerabilities (VMSA-2015-0007)

The VMware vCenter Server installed on the remote host is affected by the following vulnerabilities : - A flaw exists in the vpxd service due to improper sanitization of long heartbeat messages. An unauthenticated, remote attacker can exploit this to cause a denial of service. CVE-2015-1047 - A...

SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2015:1174-1)

The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to fix various bugs and security issues. The following vulnerabilities have been fixed : CVE-2015-3636: A missing sknullsnodeinit in pingunhash inside the ipv4 stack can cause crashes if a disconnect is followed by another connect...

Cisco AnyConnect Secure Mobility Client < 3.1(5187) (POODLE)

The remote host has a version of Cisco AnyConnect prior to 3.15187. It is, therefore, affected by an information disclosure vulnerability known as POODLE. The vulnerability is due to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block ciphers in cipher block...