Scientific Linux Security Update : seamonkey on SL4.x i386/x86_64

An integer overflow flaw was found in the way SeaMonkey displayed certain web content. A malicious website could cause SeaMonkey to crash or execute arbitrary code with the permissions of the user running SeaMonkey. CVE-2008-2785 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

RHEL 4 / 5 : java-1.6.0-sun (RHSA-2010:0770)

Updated java-1.6.0-sun packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

Debian DSA-1516-1 : dovecot - privilege escalation

Prior to this update, the default configuration for Dovecot used by Debian runs the server daemons with group mail privileges. This means that users with write access to their mail directory on the server for example, through an SSH login could read and also delete via a symbolic link mailboxes...

Websense Reporting Tools WsCgiLogin.exe username Parameter XSS

The remote host is running Websense, a commercial suite of web filtering products. The remote instance of Websense fails to sanitize user input to the 'UserName' parameter of the 'Websense/cgi-bin/WsCgiLogin.exe' script before using it to generate dynamic content. An unauthenticated remote attack...

Microsoft Windows/Exchange SMTP DNS Lookup Overflow (885881)

The remote host is running a version of Microsoft SMTP server which fails to validate DNS response data. An attacker can exploit this flaw to execute arbitrary code subject to the priviliges of the SMTP application server process. C Tenable Network Security, Inc. v1.2: 10/19/2004 KK Liu adjust to...

VMware ESXi 7.0 / 8.0 Out-of-Bounds read (CVE-2024-37086)

The version of VMware ESXi installed on the remote host is prior to 7.0 Update 3q or 8.0 prior to 8.0 Update 3. It is, therefore, affected by an out-of-bounds read vulnerability as referenced in the VMSA-2024-0013 advisory: Note that Nessus has not tested for these issues but has instead relied...

KB5036910: Windows Server version 23H2 Security Update (April 2024)

The remote Windows host is missing security update 5036910. It is, therefore, affected by multiple vulnerabilities - SmartScreen Prompt Security Feature Bypass Vulnerability CVE-2024-29988 - Secure Boot Security Feature Bypass Vulnerability CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,...

CentOS 9 : python-requests-2.25.1-7.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the python- requests-2.25.1-7.el9 build changelog. - Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (OEM) vulnerability (USN-5545-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5545-1 advisory. Arthur Mongodin discovered that the netfilter subsystem in the Linux kernel did not properly perform data validation. A local attacker could use this ...

Oracle Linux 8 : java-17-openjdk (ELSA-2022-1445)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1445 advisory. - JDK-8275082 should be listed as also resolving JDK-8278008 & CVE-2022-21476 Tenable has extracted the preceding description block directly from the...

SUSE SLED15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2022:0940-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0940-1 advisory. Update Xen to version 4.14.4 bsc1027519 Transient execution side-channel attacks attacking the Branch History...

F5 Networks BIG-IP : Bootstrap vulnerability (K48382137)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K48382137 advisory. - In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. CVE-2018-14040 Note that Nessus has not...

RHEL 7 : kernel (RHSA-2021:3801)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3801 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Improper handling of...

RHEL 8 : postgresql:12 (RHSA-2021:2372)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2372 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstream...

Oracle Linux 6 : bind (ELSA-2021-9213)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9213 advisory. 32:9.8.2-0.68.rc1.0.2.8 - Backport possible assertion failure on DNAME processing CVE-2021-25215 Tenable has extracted the preceding description block directly...

Oracle Linux 8 : python3 (ELSA-2021-9100)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9100 advisory. 3.6.8-31.0.3 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9008)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9008 advisory. - target: fix XCOPY NAA identifier lookup David Disseldorp Orabug: 32248040 CVE-2020-28374 - xenbus/xenbusbackend: Disallow pending watch messages...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2020-5936)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5936 advisory. - USB: serial: omninet: fix reference leaks at open Johan Hovold Orabug: 30484765 CVE-2017-8925 - x8632, entry: Store badsys error code in %eax Sve...

RHEL 7 : kernel (RHSA-2020:3598)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3598 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: kernel: DAX hugepages not considered...

RHEL 7 : java-1.8.0-openjdk (RHSA-2020:2968)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2968 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

RHEL 7 : grub2 (RHSA-2020:3276)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3276 advisory. The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular...

Arista Networks CloudVision Portal Linux Kernel TCP Multiple DoS (SA0041)

The version of Arista Networks CloudVision Portal running on the remote device is affected by the following denial of service DoS vulnerabilities related to TCP networking in the Linux kernel, which can be exploited by a remote, unauthenticated attacker: - SACK Panic. The TCPSKBCBskb-tcpgsosegs...

SUSE SLES12 Security Update : openldap2 (SUSE-SU-2020:1210-1)

This update for openldap2 fixes the following issues : CVE-2020-12243: Fixed a denial of service related to recursive filters bsc1170771. CVE-2019-13565: Fixed an authentication bypass caused by incorrect authorization of another connection, granting excess connection rights bsc1143194...

CentOS 7 : thunderbird (RHSA-2020:1489)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1489 advisory. - Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after- free. We are aware of targeted attacks in t...

RHEL 6 : kernel (RHSA-2020:0790)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0790 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: buffer overflow in...

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2693)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the...

RHEL 7 : qemu-kvm-ma (RHSA-2019:3968)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3968 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the...

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3981-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3981-2 advisory. USN-3981-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

Ncat TLS Listener

This host seems to be running an instance of Ncat that is listening over TLS. Ncat is an open source networking tool that can be used as a backdoor to allow unauthorized entry and control of the remote host An attacker may use it to steal your passwords, modify your data, and prevent you from...

openSUSE Security Update : java-11-openjdk (openSUSE-2019-161)

This update for java-11-openjdk to version 11.0.2+7 fixes the following issues : Security issues fixed : - CVE-2019-2422: Better FileChannel transfer performance bsc1122293 - CVE-2019-2426: Improve web server connections - CVE-2018-11212: Improve JPEG processing bsc1122299 - Better route routing ...

CentOS 7 : curl / nss-pem (CESA-2018:3157)

An update for curl and nss-pem is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

Oracle Linux 7 : qemu-kvm (ELSA-2018-2462)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-2462 advisory. - Resolves: bz1549824 CVE-2018-7550 qemu-kvm: Qemu: i386: multiboot OOB access while loading kernel image rhel-7.5.z - Resolves: bz1586248 CVE-2018-118...

Scientific Linux Security Update : java-1.7.0-openjdk on SL6.x i386/x86_64 (20180521) (Spectre)

Security Fixes : - An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions a commonly used performance optimization. It relies on the presence of a precisely-defined instruction sequence in the privileged...

RHEL 6 : kernel-rt (RHSA-2017:3295)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3295 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

FreeBSD : mozilla -- multiple vulnerabilities (96eca031-1313-4daf-9be2-9d6e1c4f1eb5)

Mozilla Foundation reports : Please reference CVE/URL list for details %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2019 Jacques Vidrine and contributors Redistribution a...

Amazon Linux AMI : mysql51 (ALAS-2017-800)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

Google Chrome < 52.0.2743.82 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 52.0.2743.82. It is, therefore, affected by multiple vulnerabilities as referenced in the 201607stable-channel-update advisory. - The PPAPI implementation in Google Chrome before 52.0.2743.82 does not validate the origi...

SUSE SLES11 Security Update : glibc (SUSE-SU-2014:1122-1)

This glibc update fixes a critical privilege escalation vulnerability and the following security and non-security issues : - bnc892073: An off-by-one error leading to a heap-based buffer overflow was found in gconvtranslitfind. An exploit that targets the problem is publicly available...

Ubuntu 10.04 LTS : linux vulnerabilities (USN-2441-1)

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine KVM paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in attacking the...

RHEL 5 : kernel (RHSA-2009:1672)

Updated kernel packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5.2 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 8325)

This Linux kernel update fixes various security issues and bugs in the SUSE Linux Enterprise 10 SP4 kernel. The following security issues have been fixed : - kernel/taskstats.c in the Linux kernel allowed local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink...

Scientific Linux Security Update : php53 on SL5.x i386/x86_64 (20120627)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. It was discovered that the PHP XSL extension did not restrict the file writing capability of libxslt. A remote attacker could use this flaw to create or overwrite an arbitrary file that is writable by the user...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : openjdk-6, openjdk-6b18 regression (USN-1263-2) (BEAST)

USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm CVE-2011-3389 introduced a regression that caused TLS/SSL connections to fail when using certain algorithms. This update fixes the problem. We apologize for...

RHEL 5 : java-1.4.2-ibm (RHSA-2010:0935)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0935 advisory. - krb5: null pointer dereference in GSS-API library leads to DoS MITKRB5-SA-2010-005 CVE-2010-1321 - OpenJDK HttpURLConnection incomplete...

Fedora 12 : kernel-2.6.32.19-163.fc12 (2010-13110)

Update to kernel 2.6.32.19: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.17 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.18 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.19 - Includes fixes from kernel 2.6.36-rc1 for problems caused by the...

openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2010:0430-2)

This update brings Mozilla Thunderbird to the 3.0.6 security release. It fixes following security bugs: MFSA 2010-34 / CVE-2010-1211: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showe...

Novell NetWare Web Server sewse.nlm (viewcode.jse) Traversal Arbitrary File Access

The installed version of Nombas ScriptEase Web Server Edition for NetWare on the remote host fails to sanitize input to the 'sewse.nlm' page and associated 'viewcode.jse' script before using it to display the source code of a file. By passing in a specially crafted URL argument, an attacker can...

MS03-026 / MS03-039: Buffer Overrun In RPCSS Service Could Allow Code Execution (823980 / 824146)

The remote host is running a version of Windows affected by several vulnerabilities in its RPC interface and RPCSS Service, that could allow an attacker to execute arbitrary code and gain SYSTEM privileges. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11790;...

Nginx Off-By-Slash

When a Nginx directive does not end with a slash, it is possible to traverse one step up. This incorrect configuration could allow an attacker to read file stored outside the target folder. No source data...

RHEL 7 : kernel (RHSA-2022:5937)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5937 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Incomplete cleanup of multi-core share...