177629 matches found
Atlassian JIRA XXE / Deserialization Vulnerability
The JIRA Workflow Designer Plugin in Atlassian JIRA Server before 6.3.0 improperly uses an XML parser and deserializer, which allows remote attackers to execute arbitrary code, read arbitrary files, or cause a denial of service via a crafted serialized Java object. SPDX-FileCopyrightText: 2017...
Elastix 'graph.php' Local File Include Vulnerability
Elastix is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Ubuntu: Security Advisory (USN-2464-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1871-1 (wordpress)
The remote host is missing an update to wordpress announced via advisory DSA 1871-1. OpenVAS Vulnerability Test $Id: deb18711.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1871-1 wordpress Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
vxworks ftpd buffer overflow
It might be possible to make the remote FTP server crash by issuing this command : CEL aaaa...aaaa This problem is similar to the 'aix ftpd' overflow but on embedded vxworks based systems like the 3com nbx IP phone call manager and seems to cause the server to crash. Note that OpenVAS solely reli...
Oracle: Security Advisory (ELSA-2015-1053)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Kentico CMS Detection (HTTP)
HTTP based detection of Kentico CMS. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.113117";...
Debian: Security Advisory (DSA-4081-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Operating System (OS) Detection (FTP)
FTP banner based Operating System OS detection. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreePBX < 2.9.0.9, 2.10.x < 2.11.1.5 RCE Vulnerability - Active Check
FreePBX is prone to a remote command execution RCE vulnerability because the application fails to sufficiently sanitize input data. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
PHP < 4.4.4 Multiple Vulnerabilities
PHP is prone to multiple vulnerabilities. Copyright C 2012 NopSec Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...
VMware ESXi scan initialization
This VT initiates an authenticated scan against the VMware ESXi SOAP API via HTTP. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Mozilla Products Multiple Vulnerabilities (Oct 2011) - Windows
Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Media Player Network Sharing Remote Code Execution Vulnerability (2281679)
This host is missing a critical security update according to Microsoft Bulletin MS10-075. OpenVAS Vulnerability Test $Id: secpodms10-075.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft Windows Media Player Network Sharing Remote Code Execution Vulnerability 2281679 Authors: Antu Sanadi Copyright:...
Android Debug Bridge (ADB) Accessible Without Authentication
The script checks if the target host is running a service supporting the Android Debug Bridge ADB protocol without an enabled authentication. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
Microsoft Windows 10: Service: Infrared monitor service
This test checks the setting for policy OpenVAS Vulnerability Test $Id: wininfraredmonitorservice.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Infrared monitor service irmon Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program...
Debian Security Advisory DSA 3318-1 (expat - security update)
Multiple integer overflows have been discovered in Expat, an XML parsing library, which may result in denial of service or the execution of arbitrary code if a malformed XML file is processed. OpenVAS Vulnerability Test $Id: deb3318.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from...
Boa Webserver Terminal Escape Sequence in Logs Command Injection Vulnerability
Boa Webserver is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary commands in a terminal. Boa Webserver 0.94.14rc21 is vulnerable; other versions may also be affected. OpenVAS...
OpenSSL: 0-byte record padding oracle (CVE-2019-1559) - Linux
OpenSSL is prone to a padding oracle attack. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl"; ifdescription...
OpenSSH < 7.4 Multiple Vulnerabilities (Jan 2017) - Linux
OpenSSH is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh"; ifdescription...
Schneider Electric CANopen Communication DTM Library Detection (Windows SMB Login)
SMB login-based detection of Schneider Electric CANopen Communication DTM Library. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
AppleShare IP / Apple Filing Protocol (AFP) Unencrypted Cleartext Login
The remote host is running a AppleShare IP / Apple Filing Protocol AFP service that allows cleartext logins over unencrypted connections. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
CentOS Update for mysql CESA-2010:0442 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Ubuntu: Security Advisory (USN-2223-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows: MSS: Allow ICMP redirects to override OSPF generated routes
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmlenableicmpredirect.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for MSS: EnableICMPRedirect Allow ICMP redirects to override OSPF generated routes Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networ...
Fedora Update for kernel FEDORA-2016-e0f3fcd7df
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for seamonkey CESA-2010:0967 centos4 x86_64
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for libguestfs FEDORA-2011-17388
Check for the Version of libguestfs OpenVAS Vulnerability Test Fedora Update for libguestfs FEDORA-2011-17388 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Ubuntu: Security Advisory (USN-3392-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome Multiple Vulnerabilities - March 11(Linux)
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultdosvulnmar11lin.nasl 7006 2017-08-25 11:51:20Z teissa $ Google Chrome Multiple Denial of Service Vulnerabilities - March 11Linux Authors: Madhuri D Copyright: Copyright c...
Microsoft Windows Multiple Vulnerabilities (KB5048661)
This host is missing an important security update according to Microsoft KB5048661 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Fedora Update for kernel-tools FEDORA-2019-be9add5b77
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Microsoft Windows: Disallow copying of user input methods to the system account for sign-in
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winuserinputmethodssignin.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Disallow copying of user input methods to the system account for sign-in Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks...
CentOS Update for thunderbird CESA-2012:1483 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Ubuntu: Security Advisory (USN-3619-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-3333-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VMware Security Updates for vCenter Server (VMSA-2014-0006)
VMware product updates address OpenSSL security vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft Windows: Enable/Disable PerfTrack
This policy setting specifies whether to enable or disable tracking of responsiveness events. If you enable this policy setting, responsiveness events are processed and aggregated. The aggregated data will be transmitted to Microsoft through SQM. Ff you disable this policy setting, responsiveness...
NUUO Network Video Recorder Default Credentials (HTTP)
The remote NUUO Network Video Recorder web interface is using known default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Fedora Update for kernel FEDORA-2013-18364
Check for the Version of kernel OpenVAS Vulnerability Test Fedora Update for kernel FEDORA-2013-18364 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
RedHat Update for kernel RHSA-2010:0398-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2010:0398-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Ubuntu: Security Advisory (USN-4113-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for kernel RHSA-2010:0606-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2010:0606-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
SuSE Update for IBMJava2,IBMJava5,java-1_4_2-ibm,java-1_5_0-ibm SUSE-SA:2008:025
Check for the Version of IBMJava2,IBMJava5,java-142-ibm,java-150-ibm OpenVAS Vulnerability Test $Id: gbsuse2008025.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for IBMJava2,IBMJava5,java-142-ibm,java-150-ibm SUSE-SA:2008:025 Authors: System Generated Check Copyright: Copyright c 2009...
nginx 1.9.5 - 1.17.2 HTTP/2 Multiple DoS Vulnerabilities
nginx is prone to multiple denial of service DoS vulnerabilities in the HTTP/2 implementation. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SAP NetWeaver Portal 'ConfigServlet' RCE Vulnerability (1503579, 1616259) - Active Check
SAP NetWeaver Portal is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
RedHat Update for thunderbird RHSA-2011:1343-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Debian Security Advisory DSA 2262-2 (php5)
The remote host is missing an update to php5 announced via advisory DSA 2262-2. OpenVAS Vulnerability Test $Id: deb22622.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2262-2 php5 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Simple Machines Forum (SMF) <= 2.1.6 Multiple Vulnerabilities
Simple Machines Forum SMF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Ubuntu: Security Advisory (USN-3990-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...