Download
| Alert*
oval:org.secpod.oval:def:701031
libxslt: XSLT processing library Applications using libxslt could be made to crash or run programs as your login if they processed a specially crafted file. oval:org.secpod.oval:def:202452 libxslt is a library for transforming XML files into other textual formats using the standard XSLT stylesheet transformation mechanism. A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces. An attacker could use this flaw to create ... oval:org.secpod.oval:def:202451 libxslt is a library for transforming XML files into other textual formats using the standard XSLT stylesheet transformation mechanism. A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces. An attacker could use this flaw to create ... oval:org.secpod.oval:def:104169 This C library allows to transform XML files into other XML files using the standard XSLT stylesheet transformation mechanism. To use it you need to have a version of libxml2 >= 2.6.27 installed. The xsltproc command is a command line interface to the XSLT engine oval:org.secpod.oval:def:104195 This C library allows to transform XML files into other XML files using the standard XSLT stylesheet transformation mechanism. To use it you need to have a version of libxml2 >= 2.6.27 installed. The xsltproc command is a command line interface to the XSLT engine oval:org.secpod.oval:def:1601313 A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces. An attacker could use this flaw to create a malicious XSL file that, when used by an application linked against libxslt to perform an XSL transformation, could cause the applicat ... oval:org.secpod.oval:def:1300269 A vulnerability has been discovered and corrected in ejabberd: xslt.c in libxslt before 1.1.25 allows context-dependent attackers to cause a denial of service via a stylesheet that embeds a DTD, which causes a structure to be accessed as a different type. NOTE: this issue is due to an incomplete fi ... oval:org.secpod.oval:def:15914 The host is installed with Apple iTunes before 11.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:1300093 A vulnerability has been discovered and corrected in libxslt: The XSL implementation in libxslt allows remote attackers to cause a denial of service via unspecified vectors . The updated packages have been patched to correct this issue. oval:org.secpod.oval:def:6230 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain elements. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:6264 The host is installed with Google Chrome before 20.0.1132.43 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle XSL implementation. Successful exploitation allows remote attackers to cause an incorrect read operation. oval:org.secpod.oval:def:6220 The host is installed with Google Chrome before 20.0.1132.43 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle XSL implementation. Successful exploitation allows remote attackers to cause an incorrect read operation. oval:org.secpod.oval:def:15917 The host is missing a security update according to apple advisory, APPLE-SA-2013-10-22-8. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to crash the ... oval:org.secpod.oval:def:302928 A vulnerability has been discovered and corrected in libxslt: The XSL implementation in libxslt allows remote attackers to cause a denial of service via unspecified vectors . The updated packages have been patched to correct this issue. oval:org.secpod.oval:def:1503654 Updated libxslt packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are ... oval:org.secpod.oval:def:6241 The host is installed with Google Chrome before 20.0.1132.43 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle XSL implementation. Successful exploitation allows remote attackers to cause an incorrect read operation. oval:org.secpod.oval:def:6284 The host is installed with Google Chrome before 20.0.1132.43 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle XSL implementation. Successful exploitation allows remote attackers to cause an incorrect read operation. oval:org.secpod.oval:def:16642 The host is missing a security update according to Apple advisory, APPLE-SA-2014-01-22-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle the contents of the iTunes Tutorials window. Successful exploitation allows attac ... oval:org.secpod.oval:def:6273 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain elements. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:6293 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain elements. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:6251 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle certain elements. Successful exploitation allows attackers to cause denial of service. oval:org.secpod.oval:def:500891 libxslt is a library for transforming XML files into other textual formats using the standard XSLT stylesheet transformation mechanism. A heap-based buffer overflow flaw was found in the way libxslt applied templates to nodes selected by certain namespaces. An attacker could use this flaw to create ... |