Lucene search
HistoryDec 09, 2013 - 4:36 p.m.
CVE-2013-4376
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.054
Percentile
93.2%
The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl.
Affected configurations
Node
x2gox2go_serverRange≤4.0.0.1
ORx2gox2go_serverMatch4.0.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| x2go | x2go_server | * | cpe:2.3:a:x2go:x2go_server:*:*:*:*:*:*:*:* |
| x2go | x2go_server | 4.0.0.0 | cpe:2.3:a:x2go:x2go_server:4.0.0.0:*:*:*:*:*:*:* |
Related
securityvulns
securityvulns
x2goserver privilege escalation
2014-03-18 00:00:00
[ MDVSA-2014:063 ] x2goserver
2014-03-18 00:00:00
prion
prion
Path traversal
2013-12-09 16:36:00
debiancve
debiancve
CVE-2013-4376
2013-12-09 16:36:46
gentoo
gentoo
X2Go Server: Arbitrary code execution
2013-10-28 00:00:00
cve
cve
CVE-2013-4376
2013-12-09 16:36:46
mageia
mageia
Updated x2goserver package fixes security vulnerability
2014-03-02 02:55:00
nessus
nessus
GLSA-201310-19 : X2Go Server: Arbitrary code execution
2013-10-29 00:00:00
Mandriva Linux Security Advisory : x2goserver (MDVSA-2014:063)
2014-03-18 00:00:00
cvelist
cvelist
CVE-2013-4376
2013-12-09 11:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0111)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201310-19
2015-09-29 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.054
Percentile
93.2%
Related for NVD:CVE-2013-4376