Nessus.org Plugins
http://www.nessus.org/scripts.php
All the newest security checks for the Nessus scannerNessus Pluginshttp://www.nessus.org/images/RssLogo.jpg
http://www.nessus.org/
Novell ZENworks Configuration Console Login.jsp language Parameter XSS
Synopsis :
The remote web server hosts a script that is affected by a cross-site
scripting vulnerability.
Description :
The remote web server hosts a version of the ZENworks Configuration
Console that is affected by a cross-site scripting vulnerability. The
'language' parameter is not properly validated in 'Login.jsp' and can be
tampered with to inject arbitrary script code in a user's browser via a
specially crafted POST request.
Note that hosts that are affected by this issue are also likely to be
affected by other vulnerabilities.
Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true
]]>
http://www.nessus.org/plugins/index.php?view=single&id=66915
?Novell ZENworks Control Center File Upload Remote Code Execution (intrusive check)
Synopsis :
The remote host is affected by a remote code execution vulnerability.
Description :
The installed version of Novell ZENworks Control Center has a flaw with
authentication checking on '/zenworks/jsp/index.jsp' that can allow a
remote, unauthenticated attacker to upload arbitrary files and execute
them with SYSTEM privileges. Nessus has exploited this vulnerability to
upload a file to the '/zenworks/css' directory.
The remote host has an application that is affected by multiple
vulnerabilities.
Description :
The remote host has a version of Novell ZENworks Configuration
Management installed prior to 11.2.3a Monthly Update 1. It is,
therefore, affected by the following vulnerabilities:
- An open redirect vulnerability exists on the ZENworks
Control Center login page due to improper validation of
the 'fwdToURL' parameter. (CVE-2013-1093)
- The ZENworks Control Center Login.jsp script is affected
by a cross-site scripting vulnerability that exists due
to improper validation on the 'language' parameter.
(CVE-2013-1094)
- A cross-site scripting vulnerability exists due to
improper validation of input when handling 'onError'
events. (CVE-2013-1095)
- A cross-site scripting vulnerability exists due to
improper validation of input when handling frame tag
'onload' events. (CVE-2013-1097)
The remote SuSE 11 host is missing one or more security updates.
Description :
The SUSE Linux Enterprise 11 Service Pack 2 kernel has been updated to
Linux kernel 3.0.80 which fixes various bugs and security issues.
The following security issues have been fixed :
- Timing side channel on attacks were possible on
/dev/ptmx that could allow local attackers to predict
keypresses like e.g. passwords. This has been fixed
again by updating accessed/modified time on the pty
devices in resolution of 8 seconds, so that idle time
detection can still work. (CVE-2013-0160)
- The vcc_recvmsg function in net/atm/common.c in the
Linux kernel did not initialize a certain length
variable, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3222)
- The ax25_recvmsg function in net/ax25/af_ax25.c in the
Linux kernel did not initialize a certain data
structure, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3223)
- The bt_sock_recvmsg function in
net/bluetooth/af_bluetooth.c in the Linux kernel did not
properly initialize a certain length variable, which
allowed local users to obtain sensitive information from
kernel stack memory via a crafted recvmsg or recvfrom
system call. (CVE-2013-3224)
- The rfcomm_sock_recvmsg function in
net/bluetooth/rfcomm/sock.c in the Linux kernel did not
initialize a certain length variable, which allowed
local users to obtain sensitive information from kernel
stack memory via a crafted recvmsg or recvfrom system
call. (CVE-2013-3225)
- The caif_seqpkt_recvmsg function in
net/caif/caif_socket.c in the Linux kernel did not
initialize a certain length variable, which allowed
local users to obtain sensitive information from kernel
stack memory via a crafted recvmsg or recvfrom system
call. (CVE-2013-3227)
- The irda_recvmsg_dgram function in net/irda/af_irda.c in
the Linux kernel did not initialize a certain length
variable, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3228)
- The iucv_sock_recvmsg function in net/iucv/af_iucv.c in
the Linux kernel did not initialize a certain length
variable, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3229)
- The llc_ui_recvmsg function in net/llc/af_llc.c in the
Linux kernel did not initialize a certain length
variable, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3231)
- The nr_recvmsg function in net/netrom/af_netrom.c in the
Linux kernel did not initialize a certain data
structure, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3232)
- The rose_recvmsg function in net/rose/af_rose.c in the
Linux kernel did not initialize a certain data
structure, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3234)
- net/tipc/socket.c in the Linux kernel did not initialize
a certain data structure and a certain length variable,
which allowed local users to obtain sensitive
information from kernel stack memory via a crafted
recvmsg or recvfrom system call. (CVE-2013-3235)
- The crypto API in the Linux kernel did not initialize
certain length variables, which allowed local users to
obtain sensitive information from kernel stack memory
via a crafted recvmsg or recvfrom system call, related
to the hash_recvmsg function in crypto/algif_hash.c and
the skcipher_recvmsg function in
crypto/algif_skcipher.c. (CVE-2013-3076)
- The scm_set_cred function in include/net/scm.h in the
Linux kernel used incorrect uid and gid values during
credentials passing, which allowed local users to gain
privileges via a crafted application. (CVE-2013-1979)
- A kernel information leak via tkill/tgkill was fixed.
The following bugs have been fixed :
- reiserfs: fix spurious multiple-fill in
reiserfs_readdir_dentry. (bnc#822722)
- libfc: do not exch_done() on invalid sequence ptr.
(bnc#810722)
- netfilter: ip6t_LOG: fix logging of packet mark.
(bnc#821930)
- hyperv: use 3.4 as LIC version string. (bnc#822431)
The remote Mandriva Linux host is missing a security update.
Description :
Multiple vulnerabilities has been found and corrected in owncloud :
Cross-site scripting (XSS) vulnerabilities in js/viewer.js inside the
files_videoviewer application via multiple unspecified vectors in all
ownCloud versions prior to 5.0.7 and 4.5.12 allows authenticated
remote attackers to inject arbitrary web script or HTML via shared
files (CVE-2013-2150).
Cross-site scripting (XSS) vulnerabilities in core/js/oc-dialogs.js
via multiple unspecified vectors in all ownCloud versions prior to
5.0.7 and other versions before 4.0.16 allows authenticated remote
attackers to inject arbitrary web script or HTML via shared files
(CVE-2013-2149).
This advisory provides the latest versions of owncloud (5.0.7) which
is not vulnerable to these issues.
The remote Debian host is missing a security-related update.
Description :
Multiple vulnerabilities were discovered in the dissectors for CAPWAP,
GMR-1 BCCH, PPP, NBAP, RDP, HTTP, DCP ETSI and in the Ixia IxVeriWave
file parser, which could result in denial of service or the execution
of arbitrary code.
The remote host has an update manager installed that is affected by
multiple vulnerabilities.
Description :
The version of VMware vCenter Update Manager installed on the remote
Windows host is 4.0 earlier than Update 4a, or 4.1 earlier than Update
3. Such versions use a version of the Oracle JRE 1.5 that is affected
by multiple vulnerabilities.
A patch management application is installed on the remote Windows
host.
Description :
VMware vCenter Update Manager (also known as vSphere Update Manager)
was detected on the remote Windows host. This application is used to
manage patches on vSphere hosts.
]]>
http://www.nessus.org/plugins/index.php?view=single&id=66907
?Debian DSA-2708-1 : fail2ban - denial of service
Synopsis :
The remote Debian host is missing a security-related update.
Description :
Krzysztof Katowicz-Kowalewski discovered a vulnerability in Fail2ban,
a log monitoring and system which can act on attack by preventing
hosts to connect to specified services using the local firewall.
When using Fail2ban to monitor Apache logs, improper input validation
in log parsing could enable a remote attacker to trigger an IP ban on
arbitrary addresses, thus causing a denial of service.
For the oldstable distribution (squeeze), this problem has been fixed
in version 0.8.4-3+squeeze2.
For the stable distribution (wheezy), this problem has been fixed in
version 0.8.6-3wheezy2.
Risk factor :
Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 3.4
(CVSS2#E:POC/RL:OF/RC:ND)
Public Exploit Available : true
]]>
http://www.nessus.org/plugins/index.php?view=single&id=66906
?Debian DSA-2707-1 : dbus - denial of service
Synopsis :
The remote Debian host is missing a security-related update.
Description :
Alexandru Cornea discovered a vulnerability in libdbus caused by an
implementation bug in _dbus_printf_string_upper_bound(). This
vulnerability can be exploited by a local user to crash system
services that use libdbus, causing denial of service. Depending on the
dbus services running, it could lead to complete system crash.
The oldstable distribution (squeeze) is not affected by this problem.
For the stable distribution (wheezy), this problem has been fixed in
version 1.6.8-1+deb7u1.
Risk factor :
High
]]>
http://www.nessus.org/plugins/index.php?view=single&id=66905
?Ubuntu 12.10 : linux vulnerabilities (USN-1881-1)
Synopsis :
The remote Ubuntu host is missing one or more security-related patches.
Description :
An information leak was discovered in the Linux kernel when inotify is
used to monitor the /dev/ptmx device. A local user could exploit this
flaw to discover keystroke timing and potentially discover sensitive
information like password length. (CVE-2013-0160)
An information leak was discovered in the Linux kernel's tkill and
tgkill system calls when used from compat processes. A local user
could exploit this flaw to examine potentially sensitive kernel
memory. (CVE-2013-2141)
A flaw was discovered in the Linux kernel's perf events subsystem for
Intel Sandy Bridge and Ivy Bridge processors. A local user could
exploit this flaw to cause a denial of service (system crash).
(CVE-2013-2146)
An information leak was discovered in the Linux kernel's crypto API. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3076)
An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)
An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)
An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)
An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)
An information leak was discovered in the Linux kernel's CAIF protocol
implementation. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3227)
An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)
An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)
An information leak was discovered in the Linux kernel's l2tp (Layer
Two Tunneling Protocol) implementation. A local user could exploit
this flaw to examine potentially sensitive information from the
kernel's stack memory. (CVE-2013-3230)
An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)
An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)
An information leak was discovered in the Linux kernel's nfc (near
field communication) support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3233)
An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)
An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).
Solution :
Update the affected linux-image-3.5.0-34-generic and / or
linux-image-3.5.0-34-highbank packages.
Risk factor :
Medium / CVSS Base Score : 4.9
(CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false
The remote Ubuntu host is missing a security-related patch.
Description :
An information leak was discovered in the Linux kernel when inotify is
used to monitor the /dev/ptmx device. A local user could exploit this
flaw to discover keystroke timing and potentially discover sensitive
information like password length. (CVE-2013-0160)
An information leak was discovered in the Linux kernel's tkill and
tgkill system calls when used from compat processes. A local user
could exploit this flaw to examine potentially sensitive kernel
memory. (CVE-2013-2141)
A flaw was discovered in the Linux kernel's perf events subsystem for
Intel Sandy Bridge and Ivy Bridge processors. A local user could
exploit this flaw to cause a denial of service (system crash).
(CVE-2013-2146)
An information leak was discovered in the Linux kernel's crypto API. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3076)
An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)
An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)
An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)
An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)
An information leak was discovered in the Linux kernel's CAIF protocol
implementation. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3227)
An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)
An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)
An information leak was discovered in the Linux kernel's l2tp (Layer
Two Tunneling Protocol) implementation. A local user could exploit
this flaw to examine potentially sensitive information from the
kernel's stack memory. (CVE-2013-3230)
An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)
An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)
An information leak was discovered in the Linux kernel's nfc (near
field communication) support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3233)
An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)
An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).
Solution :
Update the affected linux-image-3.5.0-34-generic package.
Risk factor :
Medium / CVSS Base Score : 4.9
(CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false
The remote Ubuntu host is missing one or more security-related patches.
Description :
An information leak was discovered in the Linux kernel when inotify is
used to monitor the /dev/ptmx device. A local user could exploit this
flaw to discover keystroke timing and potentially discover sensitive
information like password length. (CVE-2013-0160)
A flaw was discovered in the Linux kernel's perf events subsystem for
Intel Sandy Bridge and Ivy Bridge processors. A local user could
exploit this flaw to cause a denial of service (system crash).
(CVE-2013-2146)
An information leak was discovered in the Linux kernel's crypto API. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3076)
An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)
An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)
An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)
An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)
An information leak was discovered in the Linux kernel's CAIF protocol
implementation. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3227)
An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)
An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)
An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)
An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)
An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)
An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).
Solution :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 4.9
(CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N)
The remote Ubuntu host is missing a security-related patch.
Description :
Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual
Machine) emulated the IOAPIC. A privileged guest user could exploit
this flaw to read host memory or cause a denial of service (crash the
host). (CVE-2013-1798)
An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)
An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)
An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)
An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)
An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)
An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)
An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)
An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)
An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)
An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).
Solution :
Update the affected linux-image-2.6.32-353-ec2 package.
Risk factor :
Medium / CVSS Base Score : 6.2
(CVSS2#AV:A/AC:H/Au:N/C:C/I:N/A:C)
The remote Ubuntu host is missing one or more security-related patches.
Description :
Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual
Machine) emulated the IOAPIC. A privileged guest user could exploit
this flaw to read host memory or cause a denial of service (crash the
host). (CVE-2013-1798)
An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)
An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)
An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)
An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)
An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)
An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)
An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)
An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)
An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)
An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).
Solution :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.2
(CVSS2#AV:A/AC:H/Au:N/C:C/I:N/A:C)
The remote Mandriva Linux host is missing one or more security
updates.
Description :
Multiple vulnerabilities has been found and corrected in apache :
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server
2.2.x before 2.2.25 writes data to a log file without sanitizing
non-printable characters, which might allow remote attackers to
execute arbitrary commands via an HTTP request containing an escape
sequence for a terminal emulator (CVE-2013-1862).
A buffer overflow when reading digest password file with very long
lines in htdigest was discovered (PR 54893).
The updated packages have been patched to correct these issues.
The remote web server hosts a job scheduling / management system that
is affected by multiple vulnerabilities.
Description :
The remote web server hosts a version of Jenkins or Jenkins Enterprise
that is affected by multiple vulnerabilities :
- The included component 'ZeroClipboard' contains an
error in the file 'ZeroClipboard10.swf' that could
allow cross-site scripting attacks.
(CVE-2013-1808)
- An unspecified cross-site scripting error exists.
(CVE-2013-2033)
- Multiple errors exist that could lead to cross-site
request forgery attacks, thus allowing an attacker to
trick an administrator into executing arbitrary code.
(CVE-2013-2034)
The remote Windows host has an application installed that is
potentially affected by a remote code execution vulnerability.
Description :
The version of VMware vCenter Chargeback Manager installed on the
remote Windows host is potentially affected by a remote code execution
vulnerability due to a flaw in the handling of file uploads. By
exploiting this flaw, a remote, unauthenticated attacker could execute
arbitrary code subject to the privileges of the user running the
application.