exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-028
Posted Jan 27, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-028 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\0\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, overflow, arbitrary, spoof
systems | linux, netbsd, freebsd, openbsd, mandriva
advisories | CVE-2009-2702, CVE-2009-2537, CVE-2009-0689
MD5 | ca72b5b5176f9490073325867040e938
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
This App Will Tell You If Your iPhone Gets Hacked
Posted Nov 14, 2019

tags | headline, hacker, phone, apple, backdoor
Iranian Hacking Group Built Its Own VPN Network
Posted Nov 14, 2019

tags | headline, hacker, cyberwar, iran, cryptography
Malware Attacks On Hospitals Are Rising Fast
Posted Nov 13, 2019

tags | headline, malware, cybercrime, fraud
Russian Charged With Running $20 Million Card Fraud Scheme
Posted Nov 13, 2019

tags | headline, bank, usa, russia, cybercrime, fraud
US Violated Constitution By Searching Phones For No Good Reason
Posted Nov 13, 2019

tags | headline, government, privacy, usa, phone, data loss
System Bug Gives Facebook Access To iPhone Cameras
Posted Nov 13, 2019

tags | headline, privacy, phone, flaw, apple, facebook, social
Phishing Emails Spoof WebEx Invites, Abuse Open Redirect
Posted Nov 12, 2019

tags | headline, fraud, flaw, cisco, phish
Microsoft To Employ California's Digital Privacy Law Nationwide
Posted Nov 12, 2019

tags | headline, privacy, microsoft, usa
Labour Party Confirms Cyber Attack Was DDoS
Posted Nov 12, 2019

tags | headline, government, britain, denial of service
Google Accesses Trove Of Patient Data In Project Nightingale
Posted Nov 12, 2019

tags | headline, privacy, google, spyware
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close