The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Squeeze

ISC DHCP: denial of service via IPv6 Lease Expiration
An attacker can send to ISC DHCP an IPv6 lease renewal query, with a malicious expiration date, in order to stop it...
AA-00779, BID-55530, CERTA-2012-AVI-501, CERTA-2012-AVI-679, CVE-2012-3955, DSA-2551-1, FEDORA-2012-14076, FEDORA-2012-14149, MDVSA-2012:153, MDVSA-2012:153-1, openSUSE-SU-2012:1234-1, openSUSE-SU-2012:1252-1, openSUSE-SU-2012:1254-1, RHSA-2013:0504-02, SSA:2012-258-01, SUSE-SU-2012:1327-1, VIGILANCE-VUL-11941
ISC BIND: denial of service via RDATA 65535
When the ISC BIND DNS server processes a record with a RDATA larger than 65535 bytes it stops...
AA-00778, BID-55522, c03526327, CERTA-2012-AVI-500, CERTA-2012-AVI-601, CERTA-2012-AVI-679, CERTA-2013-AVI-337, CVE-2012-4244, DSA-2547-1, ESX400-201305001, ESX400-201305402-SG, ESX400-201305404-SG, ESX410-201301001, ESX410-201301401-SG, ESX410-201301402-SG, ESX410-201301403-SG, ESX410-201301405-SG, FEDORA-2012-14030, FEDORA-2012-14106, FreeBSD-SA-12:06.bind, HPSBUX02823, KB76394, MDVSA-2012:152, MDVSA-2012:152-1, openSUSE-SU-2012:1192-1, openSUSE-SU-2013:0605-1, RHSA-2012:1266-01, RHSA-2012:1267-01, RHSA-2012:1268-01, RHSA-2012:1365-01, sol13974, sol14201, SSA:2012-257-01, SSRT100976, SUSE-SU-2012:1199-1, SUSE-SU-2012:1333-1, VIGILANCE-VUL-11938, VMSA-2013-0001, VMSA-2013-0001.5, VMSA-2013-0003, VMSA-2013-0004.3, VMSA-2013-0007
icclib, Ghostscript: integer overflows via ICC
An attacker can invite the victim to open a malicious PDF or PS file with Ghostscript in order to execute code with victim's privileges...
854227, BID-55494, CVE-2012-4405, DSA-2595-1, FEDORA-2012-13839, FEDORA-2012-13846, MDVSA-2012:151, MDVSA-2012:151-1, MDVSA-2013:089, MDVSA-2013:090, openSUSE-SU-2012:1289-1, openSUSE-SU-2012:1290-1, RHSA-2012:1256-01, SUSE-SU-2012:1222-1, VIGILANCE-VUL-11935
FreeRADIUS: buffer overflow via X.509
When FreeRADIUS is configured to authenticate users with 802.1X, an attacker can send a malicious client certificate, in order to generate an overflow, leading to code execution...
BID-55483, CERTA-2012-AVI-493, CVE-2012-3547, DSA-2546-1, FEDORA-2012-15397, FEDORA-2012-15743, MDVSA-2012:159, MDVSA-2013:038, openSUSE-SU-2012:1200-1, PRE-SA-2012-06, RHSA-2012:1326-01, RHSA-2012:1327-01, VIGILANCE-VUL-11927
Xen: privilege elevation via QEMU Monitor
An administrator of a guest system can use a keyboard shortcut, in order to access to the QEMU Monitor console, so he can elevate his privileges on the host...
BID-55442, CERTA-2012-AVI-490, CVE-2012-4411, DSA-2543-1, FEDORA-2012-13434, FEDORA-2012-13443, openSUSE-SU-2012:1572-1, openSUSE-SU-2012:1573-1, SUSE-SU-2012:1486-1, SUSE-SU-2012:1487-1, SUSE-SU-2012:1503-1, SUSE-SU-2014:0446-1, VIGILANCE-VUL-11922
Xen: several vulnerabilities
An attacker, who is located in a Xen guest system, can use several vulnerabilities, in order to create a denial of service on the host, or to execute code...
BID-55400, BID-55406, BID-55410, BID-55411, BID-55412, BID-55413, BID-55414, CERTA-2012-AVI-485, CTX134708, CVE-2012-3494, CVE-2012-3495, CVE-2012-3496, CVE-2012-3497-REJECT, CVE-2012-3498, CVE-2012-3515, CVE-2012-3516, CVE-2012-6030, CVE-2012-6031, CVE-2012-6032, CVE-2012-6033, CVE-2012-6034, CVE-2012-6035, CVE-2012-6036, DSA-2542-1, DSA-2543-1, DSA-2544-1, DSA-2545-1, FEDORA-2012-13434, FEDORA-2012-13443, FEDORA-2012-15606, FEDORA-2012-15740, MDVSA-2013:121, openSUSE-SU-2012:1153-1, openSUSE-SU-2012:1170-1, openSUSE-SU-2012:1172-1, openSUSE-SU-2012:1174-1, openSUSE-SU-2012:1176-1, openSUSE-SU-2012:1572-1, openSUSE-SU-2012:1573-1, RHSA-2012:1233-01, RHSA-2012:1234-01, RHSA-2012:1235-01, RHSA-2012:1236-01, RHSA-2012:1262-01, RHSA-2012:1325-01, SOL13405416, SUSE-SU-2012:1129-1, SUSE-SU-2012:1132-1, SUSE-SU-2012:1133-1, SUSE-SU-2012:1135-1, SUSE-SU-2012:1162-1, SUSE-SU-2012:1203-1, SUSE-SU-2012:1205-1, SUSE-SU-2012:1486-1, SUSE-SU-2012:1487-1, SUSE-SU-2012:1503-1, SUSE-SU-2014:0446-1, VIGILANCE-VUL-11916, XSA-12, XSA-13, XSA-14, XSA-15, XSA-16, XSA-17, XSA-18
Linux kernel: denial of service via ip_options
A local attacker can create a multi-threaded program to manage IP options on a socket, in order to stop the system...
BID-55359, CERTA-2013-AVI-657, CVE-2012-3552, DSA-2668-1, ESX410-201312001, ESX410-201312401-SG, ESX410-201312403-SG, RHSA-2012:1304-01, RHSA-2012:1540-01, VIGILANCE-VUL-11914, VMSA-2013-0007.1, VMSA-2013-0015
Asterisk: two vulnerabilities
An authenticated attacker can use two vulnerabilities of Asterisk, in order to execute a shell command, or to bypass ACL...
AST-2012-012, AST-2012-013, BID-55335, BID-55351, CERTA-2012-AVI-478, CVE-2012-2186, CVE-2012-4737, DSA-2550-1, DSA-2550-2, FEDORA-2012-13338, FEDORA-2012-13437, VIGILANCE-VUL-11911
Firefox, Thunderbird, SeaMonkey: several vulnerabilities
Several vulnerabilities of Firefox, Thunderbird and SeaMonkey can be used by an attacker to execute code on victim's computer...
BID-55249, BID-55256, BID-55257, BID-55260, BID-55264, BID-55266, BID-55274, BID-55276, BID-55277, BID-55278, BID-55292, BID-55304, BID-55306, BID-55308, BID-55310, BID-55311, BID-55312, BID-55313, BID-55316, BID-55317, BID-55318, BID-55319, BID-55320, BID-55321, BID-55322, BID-55323, BID-55324, BID-55325, BID-55340, BID-55341, BID-55342, BID-55344, BID-55857, CERTA-2012-AVI-467, CVE-2012-1956, CVE-2012-1970, CVE-2012-1971, CVE-2012-1972, CVE-2012-1973, CVE-2012-1974, CVE-2012-1975, CVE-2012-1976, CVE-2012-3956, CVE-2012-3957, CVE-2012-3958, CVE-2012-3959, CVE-2012-3960, CVE-2012-3961, CVE-2012-3962, CVE-2012-3963, CVE-2012-3964, CVE-2012-3965, CVE-2012-3966, CVE-2012-3967, CVE-2012-3968, CVE-2012-3969, CVE-2012-3970, CVE-2012-3971, CVE-2012-3972, CVE-2012-3973, CVE-2012-3974, CVE-2012-3975, CVE-2012-3976, CVE-2012-3977-REJECT, CVE-2012-3978, CVE-2012-3979, CVE-2012-3980, CVE-2012-4930, DSA-2553-1, DSA-2554-1, DSA-2556-1, FEDORA-2012-12871, FEDORA-2012-12892, FEDORA-2012-12958, FEDORA-2012-12979, FEDORA-2012-14049, FEDORA-2012-14102, MDVSA-2012:145, MDVSA-2012:146, MDVSA-2012:147, MFSA 2012-57, MFSA 2012-58, MFSA 2012-59, MFSA 2012-60, MFSA 2012-61, MFSA 2012-62, MFSA 2012-63, MFSA 2012-64, MFSA 2012-65, MFSA 2012-66, MFSA 2012-67, MFSA 2012-68, MFSA 2012-69, MFSA 2012-70, MFSA 2012-71, MFSA 2012-72, MFSA 2012-73, openSUSE-SU-2012:1064-1, openSUSE-SU-2012:1065-1, openSUSE-SU-2014:1100-1, RHSA-2012:1210-01, RHSA-2012:1211-01, SSA:2012-244-02, SSA:2012-244-03, SSA:2012-244-04, SUSE-SU-2012:1157-1, SUSE-SU-2012:1167-1, VIGILANCE-VUL-11901
OpenJPEG: buffer overflow via JPEG2000
An attacker can invite the victim to open a malicious JPEG2000 image, in order to create a denial of service or to execute code in applications linked to OpenJPEG...
BID-55214, CVE-2012-3535, DSA-2629-1, FEDORA-2012-14707, FEDORA-2012-14717, MDVSA-2012:157, MDVSA-2013:110, openSUSE-SU-2012:1370-1, RHSA-2012:1283-01, VIGILANCE-VUL-11896
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Squeeze: