Download
| Alert*
|
oval:org.secpod.oval:def:300309
Multiple vulnerabilities has been found and corrected in php: * Improved LCG entropy. * Fixed safe_mode validation inside tempnam when the directory path does not end with a /(Martin Jansen(Ilia oval:org.secpod.oval:def:3743 The host is installed with Apple Mac OS X 10.6.4 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle directory pathnames that lack a trailing / (slash) character. Successful exploitation could man-in-the-middle attackers to bypass int ... oval:org.secpod.oval:def:700191 Auke van Slooten discovered that PHP incorrectly handled certain xmlrpc requests. An attacker could exploit this issue to cause the PHP server to crash, resulting in a denial of service. This issue only affected Ubuntu 6.06 LTS, 8.04 LTS, 9.04 and 9.10. It was discovered that the pseudorandom numbe ... oval:org.secpod.oval:def:3748 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-08-24-1. The update is required to fix multiple vulnerabilities. A flaw is present in the application, which fails to properly sanitize user supplied input. Successful exploitation could allow attackers to cr ... |
