Vulnerabilities of Mandriva LinuxMandriva Linux vulnerability: Cross Site Scripting of modulesAn attacker can trigger several Cross Site Scripting in the mod_info, mod_status, mod_imagemap, mod_ldap and mod_proxy_ftp modules, in order to execute JavaScript code in the context of the web site.
Mandriva Linux vulnerability: information disclosure in CBC mode, Lucky 13An attacker can inject wrongly encrypted messages in a TLS/DTLS session in mode CBC, and measure the delay before the error message reception, in order to progressively guess the clear content of the session.
Mandriva Linux vulnerability: vulnerabilities of SWATAn attacker can use two vulnerabilities of Samba Web Administration Tool, in order to trigger a Clickjacking or a Cross Site Request Forgery.
Mandriva Linux vulnerability: database corruption via a public keyAn attacker can create a malformed public key, and can invite a GnuPG user to import it, in order to stop the application, or to corrupt the keyring database.
Mandriva Linux vulnerability: denial of service via address conversionAn attacker who can query a named server which supports address conversion from IPv4 to IPv6, can send a query of type AAAA which makes the server halt.
Display other vulnerabilities of Mandriva Linux described by Vigil@nce...
