Summary
| Detail | |||
|---|---|---|---|
| Vendor | Debian | First view | 2009-02-02 |
| Product | Debian Linux | Last view | 2019-12-31 |
| Version | 6.0 | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:debian:debian_linux | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2019-12-31 | CVE-2013-4357 | The eglibc package before 2.14 incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service. |
| 6.1 | 2019-12-17 | CVE-2012-2237 | Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.3 and 1.5.x before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript innerHTML as used when generating login forms, (2) links or (3) resources URLs, and (4) the Display name in a user profile. |
| 9.8 | 2019-11-15 | CVE-2011-0703 | In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session. |
| 7.5 | 2019-11-14 | CVE-2012-1155 | Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to |
| 4.3 | 2019-11-07 | CVE-2013-1811 | An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New". |
| 4.3 | 2019-11-07 | CVE-2012-0049 | OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server. |
| 6.5 | 2019-11-06 | CVE-2011-4900 | TYPO3 before 4.5.4 allows Information Disclosure in the backend. |
| 7.5 | 2019-11-04 | CVE-2013-4412 | slim has NULL pointer dereference when using crypt() method from glibc 2.17 |
| 7.5 | 2018-11-12 | CVE-2018-19200 | An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function. |
| 8.1 | 2018-01-08 | CVE-2015-2318 | The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue. |
| 7.8 | 2017-09-25 | CVE-2014-8156 | The D-Bus security policy files in /etc/dbus-1/system.d/*.conf in fso-gsmd 0.12.0-3, fso-frameworkd 0.9.5.9+git20110512-4, and fso-usaged 0.12.0-2 as packaged in Debian, the upstream cornucopia.git (fsoaudiod, fsodatad, fsodeviced, fsogsmd, fsonetworkd, fsotdld, fsousaged) git master on 2015-01-19, the upstream framework.git 0.10.1 and git master on 2015-01-19, phonefsod 0.1+git20121018-1 as packaged in Debian, Ubuntu and potentially other packages, and potentially other fso modules do not properly filter D-Bus message paths, which might allow local users to cause a denial of service (dbus-daemon memory consumption), or execute arbitrary code as root by sending a crafted D-Bus message to any D-Bus system service. |
| 8.8 | 2016-06-16 | CVE-2016-3062 | The mov_read_dref function in libavformat/mov.c in Libav before 11.7 and FFmpeg before 0.11 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via the entries value in a dref box in an MP4 file. |
| 8.8 | 2016-04-14 | CVE-2015-8540 | Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.26 allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read. |
| 4.4 | 2016-04-13 | CVE-2015-8552 | The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and XEN_PCI_OP_enable_msi operations, aka "Linux pciback missing sanity checks." |
| 5 | 2015-12-16 | CVE-2015-8476 | Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an (1) email address to the validateAddress function in class.phpmailer.php or (2) SMTP command to the sendCommand function in class.smtp.php, a different vulnerability than CVE-2012-0796. |
| 6.8 | 2014-10-20 | CVE-2014-3564 | Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "different line lengths in a specific order." |
| 6.8 | 2014-10-15 | CVE-2014-3686 | wpa_supplicant and hostapd 0.7.2 through 2.2, when running with certain configurations and using wpa_cli or hostapd_cli with action scripts, allows remote attackers to execute arbitrary commands via a crafted frame. |
| 9.3 | 2014-07-23 | CVE-2014-1557 | The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data during function execution, which allows remote attackers to execute arbitrary code by triggering prolonged image scaling, as demonstrated by scaling of a high-quality image. |
| 5 | 2014-07-22 | CVE-2014-4911 | The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit. |
| 2.1 | 2014-05-11 | CVE-2014-1738 | The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call, which allows local users to obtain sensitive information from kernel heap memory by leveraging write access to a /dev/fd device. |
| 7.2 | 2014-05-11 | CVE-2014-1737 | The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCMD ioctl call, which allows local users to trigger kfree operations and gain privileges by leveraging write access to a /dev/fd device. |
| 6.9 | 2014-05-07 | CVE-2014-0196 | The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings. |
| 10 | 2014-04-15 | CVE-2014-0456 | Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. |
| 4 | 2014-04-15 | CVE-2014-0453 | Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security. |
| 7.5 | 2014-04-07 | CVE-2014-0160 | The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 15% (23) | CWE-20 | Improper Input Validation |
| 12% (19) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 11% (17) | CWE-416 | Use After Free |
| 4% (7) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 4% (7) | CWE-264 | Permissions, Privileges, and Access Controls |
| 4% (6) | CWE-787 | Out-of-bounds Write |
| 4% (6) | CWE-476 | NULL Pointer Dereference |
| 4% (6) | CWE-200 | Information Exposure |
| 4% (6) | CWE-189 | Numeric Errors |
| 4% (6) | CWE-125 | Out-of-bounds Read |
| 3% (5) | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflo... |
| 2% (4) | CWE-415 | Double Free |
| 2% (4) | CWE-190 | Integer Overflow or Wraparound |
| 2% (4) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 2% (3) | CWE-399 | Resource Management Errors |
| 2% (3) | CWE-287 | Improper Authentication |
| 2% (3) | CWE-284 | Access Control (Authorization) Issues |
| 1% (2) | CWE-704 | Incorrect Type Conversion or Cast |
| 1% (2) | CWE-310 | Cryptographic Issues |
| 1% (2) | CWE-295 | Certificate Issues |
| 1% (2) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 1% (2) | CWE-16 | Configuration |
| 0% (1) | CWE-754 | Improper Check for Unusual or Exceptional Conditions |
| 0% (1) | CWE-611 | Information Leak Through XML External Entity File Disclosure |
| 0% (1) | CWE-362 | Race Condition |
SAINT Exploits
| Description | Link |
|---|---|
| Ruby on Rails XML Processor YAML Deserialization | More info here |
| Telnetd Encryption Key ID Code Execution | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 78148 | Google Chrome libxml2 parser.c xmlStringLenDecodeEntities() Function Remote O... |
| 78020 | FreeBSD telnetd Multiple telnet/libtelnet/encrypt.c encrypt_keyid() Function ... |
| 77832 | Parallels Plesk Panel Billing System TLS Renegotiation Handshakes MiTM Plaint... |
| 77707 | Google Chrome libxml Out-of-bounds Read Remote DoS |
| 77584 | ISC DHCP Regular Expressions dhcpd.conf DHCP Request Packet Parsing Remote DoS |
| 77366 | lighttpd src/http_auth.c base64_decode() Function Base64 Data Parsing Out-of-... |
| 77035 | Google Chrome Vorbis Decoder Unspecified Remote Overflow |
| 77032 | Google Chrome Theora Decoder Unspecified Double-free Remote Issue |
| 76805 | Linux Kernel net/core/net_namespace.c Network Namespace Cleanup Weakness Remo... |
| 75685 | Perl Fast CGI (FCGI) Module Environment Variable Sharing HTTP Headers Remote ... |
| 75622 | Blue Coat Director TLS Renegotiation Handshakes MiTM Plaintext Data Injection |
| 75560 | Google Chrome Double-free libxml XPath Handling Remote Code Execution |
| 74995 | tinyproxy Netmask Generation ACL Restriction Bypass |
| 74695 | Google Chrome Double Free Unspecified libxml XPath Handling Issue |
| 74557 | ISC DHCP Crafted BOOTP Packet Remote DoS |
| 74556 | ISC DHCP Crafted DHCP Packet Remote DoS |
| 74335 | Hitachi Web Server TLS Renegotiation Handshakes MiTM Plaintext Data Injection |
| 74255 | Google Chrome Display Box Rendering Use-after-free Unspecified Remote DoS |
| 74251 | Google Chrome Client-side Redirect Targets Remote Information Disclosure |
| 74229 | Google Chrome Line Box Tracking Rendering Stale Pointer Issue |
| 73984 | libpng png_rgb_to_gray Function PNG File Handling Overflow |
| 73983 | libpng pngerror.c png_err Function NULL Argument PNG File Handling DoS |
| 73982 | libpng pngrutil.c png_handle_sCAL Function PNG File Handling Memory Corruptio... |
| 73686 | libcurl http_negotiate.c Curl_input_negotiate Function GSSAPI Credential Dele... |
| 73617 | Kerberos Applications GSS-API FTP Daemon EGID Privilege Matching Restriction ... |
ExploitDB Exploits
| id | Description |
|---|---|
| 33516 | Linux kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition... |
| 32998 | Heartbleed OpenSSL - Information Leak Exploit (2) - DTLS Support |
| 32791 | Heartbleed OpenSSL - Information Leak Exploit (1) |
| 32764 | OpenSSL 1.0.1f TLS Heartbeat Extension - Memory Disclosure (Multiple SSL/TLS ... |
| 32745 | OpenSSL TLS Heartbeat Extension - Memory Disclosure |
| 24434 | Ruby on Rails JSON Processor YAML Deserialization Code Execution |
| 24019 | Ruby on Rails XML Processor YAML Deserialization Code Execution |
| 22406 | Konqueror 4.7.3 Memory Corruption |
| 18295 | lighttpd Denial of Service Vulnerability PoC |
| 16270 | vsftpd 2.3.2 Denial of Service Vulnerability |
| 10579 | TLS Renegotiation Vulnerability PoC Exploit |
OpenVAS Exploits
| id | Description |
|---|---|
| 2013-09-18 | Name : Debian Security Advisory DSA 2406-1 (icedove - several vulnerabilities) File : nvt/deb_2406_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2427-1 (imagemagick - several vulnerabilities) File : nvt/deb_2427_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2439-1 (libpng - buffer overflow) File : nvt/deb_2439_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2456-1 (dropbear - use after free) File : nvt/deb_2456_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2462-2 (imagemagick - several vulnerabilities) File : nvt/deb_2462_2.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial ... File : nvt/deb_2469_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2471-1 (ffmpeg - several vulnerabilities) File : nvt/deb_2471_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2553-1 (iceweasel - several vulnerabilities) File : nvt/deb_2553_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2581-1 (mysql-5.1 - several vulnerabilities) File : nvt/deb_2581_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2583-1 (iceweasel - several vulnerabilities) File : nvt/deb_2583_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2584-1 (iceape - several vulnerabilities) File : nvt/deb_2584_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2588-1 (icedove - several vulnerabilities) File : nvt/deb_2588_1.nasl |
| 2013-09-18 | Name : Debian Security Advisory DSA 2590-1 (wireshark - several vulnerabilities) File : nvt/deb_2590_1.nasl |
| 2012-12-31 | Name : Fedora Update for libtiff FEDORA-2012-20404 File : nvt/gb_fedora_2012_20404_libtiff_fc16.nasl |
| 2012-12-31 | Name : Fedora Update for libtiff FEDORA-2012-20446 File : nvt/gb_fedora_2012_20446_libtiff_fc17.nasl |
| 2012-12-26 | Name : CentOS Update for libtiff CESA-2012:1590 centos5 File : nvt/gb_CESA-2012_1590_libtiff_centos5.nasl |
| 2012-12-26 | Name : CentOS Update for libtiff CESA-2012:1590 centos6 File : nvt/gb_CESA-2012_1590_libtiff_centos6.nasl |
| 2012-12-26 | Name : RedHat Update for libtiff RHSA-2012:1590-01 File : nvt/gb_RHSA-2012_1590-01_libtiff.nasl |
| 2012-12-26 | Name : Mandriva Update for apache-mod_security MDVSA-2012:182 (apache-mod_security) File : nvt/gb_mandriva_MDVSA_2012_182.nasl |
| 2012-12-24 | Name : LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Mac OS X) File : nvt/gb_libreoffice_graphic_object_bof_vuln_macosx.nasl |
| 2012-12-24 | Name : LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Windows) File : nvt/gb_libreoffice_graphic_object_bof_vuln_win.nasl |
| 2012-12-24 | Name : OpenOffice Multiple Buffer Overflow Vulnerabilities - Dec12 (Windows) File : nvt/gb_openoffice_mult_bof_vuln_dec12_win.nasl |
| 2012-12-18 | Name : Fedora Update for xen FEDORA-2012-19828 File : nvt/gb_fedora_2012_19828_xen_fc16.nasl |
| 2012-12-14 | Name : Fedora Update for xen FEDORA-2012-19717 File : nvt/gb_fedora_2012_19717_xen_fc17.nasl |
| 2012-12-13 | Name : SuSE Update for update openSUSE-SU-2012:0466-1 (update) File : nvt/gb_suse_2012_0466_1.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-B-0007 | Multiple Vulnerabilities in Juniper Secure Analytics (JSA) and Security Threa... Severity: Category I - VMSKEY: V0058213 |
| 2014-A-0113 | Multiple Vulnerabilities in Mozilla Products Severity: Category I - VMSKEY: V0053309 |
| 2014-A-0063 | Multiple Vulnerabilities in McAfee VirusScan Enterprise for Linux Severity: Category I - VMSKEY: V0050009 |
| 2014-A-0062 | Multiple Vulnerabilities In McAfee Email Gateway Severity: Category I - VMSKEY: V0050005 |
| 2014-B-0050 | McAfee Web Gateway Information Disclosure Vulnerability Severity: Category I - VMSKEY: V0050003 |
| 2014-B-0046 | Multiple Vulnerabilities in HP System Management Homepage (SMH) Severity: Category I - VMSKEY: V0049737 |
| 2014-A-0057 | Multiple Vulnerabilities in Oracle MySQL Products Severity: Category I - VMSKEY: V0049591 |
| 2014-A-0053 | Multiple Vulnerabilities in Juniper Network JUNOS Severity: Category I - VMSKEY: V0049589 |
| 2014-A-0054 | Multiple Vulnerabilities in Oracle Database Severity: Category I - VMSKEY: V0049587 |
| 2014-A-0055 | Multiple Vulnerabilities in Oracle Fusion Middleware Severity: Category I - VMSKEY: V0049585 |
| 2014-A-0056 | Multiple Vulnerabilities in Oracle Java SE Severity: Category I - VMSKEY: V0049583 |
| 2014-A-0058 | Multiple Vulnerabilities in Oracle & Sun Systems Product Suite Severity: Category I - VMSKEY: V0049579 |
| 2014-B-0041 | Multiple Vulnerabilities in Splunk Severity: Category I - VMSKEY: V0049577 |
| 2014-B-0042 | Stunnel Information Disclosure Vulnerability Severity: Category I - VMSKEY: V0049575 |
| 2014-A-0051 | OpenSSL Information Disclosure Vulnerability Severity: Category I - VMSKEY: V0048667 |
| 2014-A-0017 | Multiple Vulnerabilities in Cisco TelePresence Video Communication Server Severity: Category I - VMSKEY: V0043846 |
| 2014-A-0019 | Multiple Vulnerabilities in VMware Fusion Severity: Category I - VMSKEY: V0043844 |
| 2013-A-0222 | Multiple Vulnerabilties in VMware Workstation Severity: Category II - VMSKEY: V0042383 |
| 2012-A-0153 | Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0 Severity: Category I - VMSKEY: V0033884 |
| 2012-B-0092 | ISC DHCP Denial of Service Vulnerability Severity: Category I - VMSKEY: V0033809 |
| 2012-A-0104 | Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Severity: Category I - VMSKEY: V0033046 |
| 2012-B-0048 | Multiple Vulnerabilities in HP Systems Insight Manager Severity: Category I - VMSKEY: V0032178 |
| 2012-A-0073 | Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1 Severity: Category I - VMSKEY: V0032171 |
| 2012-A-0056 | Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0 Severity: Category I - VMSKEY: V0031979 |
| 2012-B-0038 | Multiple Vulnerabilities in HP Onboard Administrator Severity: Category I - VMSKEY: V0031972 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-09-24 | MIT Kerberos kpasswd UDP denial of service attempt RuleID : 51212 - Type : SERVER-OTHER - Revision : 1 |
| 2019-08-31 | ISC DHCP command injection attempt RuleID : 50831 - Type : SERVER-OTHER - Revision : 1 |
| 2019-08-31 | ISC DHCP command injection attempt RuleID : 50830 - Type : SERVER-OTHER - Revision : 1 |
| 2018-07-10 | VideoLAN VLC Media Player abc file parts heap integer overflow attempt RuleID : 46916 - Type : FILE-MULTIMEDIA - Revision : 2 |
| 2018-07-10 | VideoLAN VLC Media Player abc file parts heap integer overflow attempt RuleID : 46915 - Type : FILE-MULTIMEDIA - Revision : 3 |
| 2016-05-19 | ABC file instruction field parsing exploitation attempt RuleID : 38572 - Type : FILE-OTHER - Revision : 2 |
| 2016-05-19 | ABC file instruction field parsing exploitation attempt RuleID : 38571 - Type : FILE-OTHER - Revision : 2 |
| 2016-05-19 | ABC file instruction field parsing exploitation attempt RuleID : 38570 - Type : FILE-OTHER - Revision : 2 |
| 2016-05-19 | ABC file instruction field parsing exploitation attempt RuleID : 38569 - Type : FILE-OTHER - Revision : 2 |
| 2016-03-14 | Oracle Java System.arraycopy race condition attempt RuleID : 36240 - Type : FILE-JAVA - Revision : 2 |
| 2016-03-14 | Oracle Java System.arraycopy race condition attempt RuleID : 36239 - Type : FILE-JAVA - Revision : 2 |
| 2015-04-14 | Lighttpd Host header directory traversal attempt RuleID : 33817 - Type : SERVER-OTHER - Revision : 4 |
| 2015-03-10 | libxml2 entity reference name heap buffer overflow attempt RuleID : 33310 - Type : FILE-OTHER - Revision : 2 |
| 2015-03-10 | libxml2 entity reference name heap buffer overflow attempt RuleID : 33309 - Type : FILE-OTHER - Revision : 2 |
| 2014-04-25 | OpenSSL TLSv1.2 large heartbeat response - possible ssl heartbleed attempt RuleID : 30788-community - Type : SERVER-OTHER - Revision : 5 |
| 2014-05-24 | OpenSSL TLSv1.2 large heartbeat response - possible ssl heartbleed attempt RuleID : 30788 - Type : SERVER-OTHER - Revision : 5 |
| 2014-04-25 | OpenSSL TLSv1.1 large heartbeat response - possible ssl heartbleed attempt RuleID : 30787-community - Type : SERVER-OTHER - Revision : 5 |
| 2014-05-24 | OpenSSL TLSv1.1 large heartbeat response - possible ssl heartbleed attempt RuleID : 30787 - Type : SERVER-OTHER - Revision : 5 |
| 2014-04-25 | OpenSSL TLSv1 large heartbeat response - possible ssl heartbleed attempt RuleID : 30786-community - Type : SERVER-OTHER - Revision : 4 |
| 2014-05-24 | OpenSSL TLSv1 large heartbeat response - possible ssl heartbleed attempt RuleID : 30786 - Type : SERVER-OTHER - Revision : 4 |
| 2014-04-25 | OpenSSL SSLv3 large heartbeat response - possible ssl heartbleed attempt RuleID : 30785-community - Type : SERVER-OTHER - Revision : 4 |
| 2014-05-24 | OpenSSL SSLv3 large heartbeat response - possible ssl heartbleed attempt RuleID : 30785 - Type : SERVER-OTHER - Revision : 4 |
| 2014-04-25 | OpenSSL TLSv1.2 large heartbeat response - possible ssl heartbleed attempt RuleID : 30784-community - Type : SERVER-OTHER - Revision : 4 |
| 2014-05-24 | OpenSSL TLSv1.2 large heartbeat response - possible ssl heartbleed attempt RuleID : 30784 - Type : SERVER-OTHER - Revision : 4 |
| 2014-04-25 | OpenSSL TLSv1.2 large heartbeat response - possible ssl heartbleed attempt RuleID : 30783-community - Type : SERVER-OTHER - Revision : 4 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2019-01-03 | Name: The remote Fedora host is missing a security update. File: fedora_2018-4003413459.nasl - Type: ACT_GATHER_INFO |
| 2019-01-03 | Name: The remote Fedora host is missing a security update. File: fedora_2018-96b48b34ae.nasl - Type: ACT_GATHER_INFO |
| 2019-01-03 | Name: The remote Fedora host is missing a security update. File: fedora_2018-a3ef0a026f.nasl - Type: ACT_GATHER_INFO |
| 2019-01-03 | Name: The remote Fedora host is missing a security update. File: fedora_2018-c5c72a45ea.nasl - Type: ACT_GATHER_INFO |
| 2018-12-03 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_3563fae5f60c11e8b5135404a68ad561.nasl - Type: ACT_GATHER_INFO |
| 2018-11-21 | Name: The remote Debian host is missing a security update. File: debian_DLA-1581.nasl - Type: ACT_GATHER_INFO |
| 2018-04-03 | Name: The remote web server may allow remote code execution. File: iis_7_pci.nasl - Type: ACT_GATHER_INFO |
| 2018-03-09 | Name: The remote web server is affected by multiple vulnerabilities. File: nginx_0_7_64.nasl - Type: ACT_GATHER_INFO |
| 2017-11-17 | Name: The remote host is affected by a MITM vulnerability. File: fortios_FG-IR-17-137.nasl - Type: ACT_GATHER_INFO |
| 2017-09-01 | Name: The remote OracleVM host is missing one or more security updates. File: oraclevm_OVMSA-2017-0147.nasl - Type: ACT_GATHER_INFO |
| 2017-05-10 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201705-08.nasl - Type: ACT_GATHER_INFO |
| 2017-04-18 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2017-477.nasl - Type: ACT_GATHER_INFO |
| 2017-04-07 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2017-0950-1.nasl - Type: ACT_GATHER_INFO |
| 2017-04-06 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2017-441.nasl - Type: ACT_GATHER_INFO |
| 2017-04-03 | Name: The remote OracleVM host is missing one or more security updates. File: oraclevm_OVMSA-2017-0057.nasl - Type: ACT_GATHER_INFO |
| 2017-04-03 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2017-0901-1.nasl - Type: ACT_GATHER_INFO |
| 2017-03-30 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2017-0860-1.nasl - Type: ACT_GATHER_INFO |
| 2017-01-10 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201701-16.nasl - Type: ACT_GATHER_INFO |
| 2016-11-15 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201611-08.nasl - Type: ACT_GATHER_INFO |
| 2016-10-31 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-1243.nasl - Type: ACT_GATHER_INFO |
| 2016-10-17 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_7e61cf44654911e6828600248c0c745d.nasl - Type: ACT_GATHER_INFO |
| 2016-09-02 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2016-2105-1.nasl - Type: ACT_GATHER_INFO |
| 2016-08-30 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-1029.nasl - Type: ACT_GATHER_INFO |
| 2016-08-03 | Name: The remote OracleVM host is missing a security update. File: oraclevm_OVMSA-2016-0093.nasl - Type: ACT_GATHER_INFO |
| 2016-08-02 | Name: The remote Debian host is missing a security update. File: debian_DLA-375-1.nasl - Type: ACT_GATHER_INFO |
