Vulnerabilities of Mandriva LinuxMandriva Linux vulnerability: Cross Site Scripting of modules
An attacker can inject wrongly encrypted messages in a TLS/DTLS session in mode CBC, and measure the delay before the error message reception, in order to progressively guess the clear content of the session.Mandriva Linux vulnerability: vulnerabilities of SWAT
An attacker can use two vulnerabilities of Samba Web Administration Tool, in order to trigger a Clickjacking or a Cross Site Request Forgery.Mandriva Linux vulnerability: database corruption via a public key
An attacker can create a malformed public key, and can invite a GnuPG user to import it, in order to stop the application, or to corrupt the keyring database.Mandriva Linux vulnerability: denial of service via address conversion
An attacker who can query a named server which supports address conversion from IPv4 to IPv6, can send a query of type AAAA which makes the server halt.Display other vulnerabilities of Mandriva Linux described by Vigil@nce...