The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Squeeze

phpMyAdmin: file reading via XML
An attacker can provide XML data using an external entity, in order to access to the content of a file or to create a denial of service...
BID-50497, CERTA-2011-AVI-643, CVE-2011-4107, DSA-2391-1, FEDORA-2011-15831, FEDORA-2011-15841, FEDORA-2011-15846, MDVSA-2011:198, PMASA-2011-17, TYPO3-EXT-SA-2011-018, VIGILANCE-VUL-11123
radvd: several vulnerabilities
An attacker can use several vulnerabilities of the IPv6 Router Advertisement Daemon, in order to create a denial of service or to elevate his privileges...
743748, 743749, 743752, 743756, 743758, CERTA-2002-AVI-275, CVE-2011-3601, CVE-2011-3602, CVE-2011-3603, CVE-2011-3604, CVE-2011-3605, DSA-2323-1, FEDORA-2011-14000, FEDORA-2011-14022, openSUSE-SU-2011:1247-1, SUSE-SU-2011:1245-1, SUSE-SU-2011:1246-1, VIGILANCE-VUL-11113
Apache httpd: buffer overflow via ap_pregsub
An attacker can create an overflow in the ap_pregsub() function, in order to create a denial of service, or to execute code...
BID-50494, BID-50639, c03231301, c03278391, CERTA-2012-AVI-225, CVE-2011-3607, CVE-2011-4415, DSA-2405-1, FEDORA-2012-1598, FEDORA-2012-1642, HPSBMU02748, HPSBUX02761, MDVSA-2012:003, openSUSE-SU-2012:0212-1, openSUSE-SU-2012:0248-1, RHSA-2012:0128-01, RHSA-2012:0323-01, RHSA-2012:0542-01, RHSA-2012:0543-01, SOL16907, SSA:2012-041-01, SSRT100772, SSRT100823, SUSE-SU-2011:1309-1, SUSE-SU-2011:1322-1, VIGILANCE-VUL-11121
Wireshark 1.4: two vulnerabilities
Several vulnerabilities of Wireshark can be used by a remote attacker to create a denial of service or to execute code...
BID-50481, BID-50486, CVE-2011-4101, CVE-2011-4102, DSA-2351-1, FEDORA-2011-15290, FEDORA-2011-15328, FEDORA-2011-15338, RHSA-2012:0509-01, RHSA-2013:0125-01, VIGILANCE-VUL-11115, wnpa-sec-2011-18, wnpa-sec-2011-19
Squid: denial of service via DNS CNAME
An attacker can setup a malicious DNS server, and then query Squid for this domain, in order to stop it...
3237, BID-50449, CERTA-2011-AVI-615, CVE-2011-4096, DSA-2381-1, FEDORA-2011-15233, FEDORA-2011-15256, MDVSA-2011:193, openSUSE-SU-2012:0213-1, RHSA-2011:1791-01, SUSE-SU-2016:1996-1, SUSE-SU-2016:2089-1, VIGILANCE-VUL-11114
Openswan: denial of service via Crypto Helper
When Openswan uses a Crypto Helper, a remote attacker can interrupt an IKE session, in order to stop the pluto daemon...
BID-50440, CVE-2011-4073, DSA-2374-1, FEDORA-2011-15077, FEDORA-2011-15127, FEDORA-2011-15196, MDVSA-2013:231, RHSA-2011:1422-01, SUSE-SU-2011:1310-1, SUSE-SU-2011:1311-1, VIGILANCE-VUL-11112
Linux kernel: buffer overflow via xfs_readlink
A local attacker, who is allowed to mount an XFS filesystem, can use a long link, in order to create an overflow, leading to a denial of service or to code execution...
BID-50370, CVE-2011-4077, DSA-2389-1, FEDORA-2011-15856, FEDORA-2011-17381, openSUSE-SU-2012:0540-1, openSUSE-SU-2012:0799-1, openSUSE-SU-2012:1439-1, RHSA-2012:0007-01, RHSA-2012:0333-01, RHSA-2012:0350-01, SUSE-SU-2012:0153-1, SUSE-SU-2012:0153-2, SUSE-SU-2012:0736-1, SUSE-SU-2012:1056-1, VIGILANCE-VUL-11104
Linux-PAM: vulnerabilities of pam_env
A local attacker can use two vulnerabilities of the pam_env module, in order to create a denial of service, or to elevate his privileges...
874469, 874565, BID-50343, CERTA-2002-AVI-275, CERTA-2011-AVI-592, CVE-2011-3148, CVE-2011-3149, DSA-2326-1, FEDORA-2011-16365, FEDORA-2011-16390, openSUSE-SU-2011:1204-1, openSUSE-SU-2011:1208-1, RHSA-2013:0521-02, SUSE-SU-2011:1205-1, SUSE-SU-2011:1207-1, SUSE-SU-2011:1209-1, SUSE-SU-2011:1218-1, VIGILANCE-VUL-11097
NSS: code execution via pkcs11.txt
When an attacker can store a malicious filename at the root of the current directory of an application linked to NSS, he can load a malicious library, in order to execute code...
641052, BID-50324, CERTA-2003-AVI-008, CVE-2011-3640, DSA-2339-1, openSUSE-SU-2011:1241-1, openSUSE-SU-2012:0030-1, openSUSE-SU-2012:0063-1, VIGILANCE-VUL-11095
MIT krb5: denial of service via KDC
A remote attacker can create several denial of service in the KDC of MIT krb5...
629558, BID-50273, CERTA-2011-AVI-595, CERTA-2013-AVI-362, CVE-2011-1527, CVE-2011-1528, CVE-2011-1529, CVE-2011-4151, DSA-2379-1, FEDORA-2011-14650, FEDORA-2011-14673, MDVSA-2011:159, MDVSA-2011:16, MITKRB5-SA-2011-006, openSUSE-SU-2011:1169-1, RHSA-2011:1379-01, VIGILANCE-VUL-11079, VU#659251
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Squeeze: