we track for your security since 1999
home
presentation
vulnerabilities
documentation
contact
subscriber area
free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities
tracked products
RSS feed
vulnerable product
Vulnerabilities of Novell openSUSE
Novell openSUSE vulnerability: multiple vulnerabilities
Several vulnerabilities of Adobe Flash Player can be used by an attacker to execute code.
Novell openSUSE vulnerability: bypassing the ECDSA signature with OpenSSL
When strongSwan is configured with the "OpenSSL" plugin to check ECDSA signatures, an attacker can use an empty signature, which is recognized as valid, and leads to the authentication as a legitimate user.
Novell openSUSE vulnerability: character injection via VT Switch
A local attacker can plug a keyboard, press keys, and then change the virtual terminal of X.Org Server, in order to inject characters in the X environment.
Novell openSUSE vulnerability: obtaining Cookies
An attacker can create a site with a domain name matching the end of another site, in order to force cURL to send its cookies.
Novell openSUSE vulnerability: denial of service and privilege escalation
An unauthenticated attacker can connect to the PostgreSQL port, in order to damage the database. An authenticated attacker can escalate his privileges to superuser.
Display other vulnerabilities of Novell openSUSE described by Vigil@nce...
Display information about Novell openSUSE:
http://www.opensuse.org/fr/
Copyright 1999-2013
Vigil@nce
. Vigil@nce is a service from
Orange Business Services
.
Site map
.
Legal notice
.
