Lucene search
GoogleOSV:CVE-2016-10152HistoryMar 28, 2017 - 2:59 p.m.
CVE-2016-10152
2017-03-2814:59:00
Google
osv.dev
2
The read_config_file function in lib/hesiod.c in Hesiod 3.2.1 falls back to the “.athena.mit.edu” default domain when opening the configuration file fails, which allows remote attackers to gain root privileges by poisoning the DNS cache.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hesiod | eq | hesiod-3.1.0 | |
| hesiod | eq | hesiod-3.0.0 | |
| hesiod | eq | hesiod-3.2.0 | |
| hesiod | eq | hesiod-3.1.1 | |
| hesiod | eq | hesiod-2.0.0 | |
| hesiod | eq | hesiod-3.2.1 | |
| hesiod | eq | hesiod-3.0.2 | |
| hesiod | eq | hesiod-3.0.1 |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for hesiod (EulerOS-SA-2022-1348)
2022-03-29 00:00:00
Fedora Update for hesiod FEDORA-2018-2b274689e8
2018-10-24 00:00:00
Fedora Update for hesiod FEDORA-2018-792ff3cafa
2019-05-07 00:00:00
prion
prion
Design/Logic Flaw
2017-03-28 14:59:00
ubuntucve
ubuntucve
CVE-2016-10152
2017-03-28 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : hesiod (EulerOS-SA-2022-1348)
2022-03-28 00:00:00
EulerOS 2.0 SP5 : hesiod (EulerOS-SA-2022-1325)
2022-03-21 00:00:00
EulerOS 2.0 SP3 : hesiod (EulerOS-SA-2022-1729)
2022-05-26 00:00:00
cvelist
cvelist
CVE-2016-10152
2017-03-28 14:00:00
nvd
nvd
CVE-2016-10152
2017-03-28 14:59:00
cve
cve
CVE-2016-10152
2017-03-28 14:59:00
debiancve
debiancve
CVE-2016-10152
2017-03-28 14:59:00
redhatcve
redhatcve
CVE-2016-10152
2017-01-23 01:17:37
osv
osv
hesiod - security update
2017-01-24 00:00:00
debian
debian
[SECURITY] [DLA 795-1] hesiod security update
2017-01-23 22:56:48
rosalinux
rosalinux
Advisory ROSA-SA-2021-1852
2021-07-02 17:04:34
gentoo
gentoo
hesiod: Root privilege escalation
2018-05-02 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: hesiod-3.2.1-14.fc28
2018-10-23 21:09:20
[SECURITY] Fedora 29 Update: hesiod-3.2.1-14.fc29
2018-10-30 17:45:35
[SECURITY] Fedora 27 Update: hesiod-3.2.1-14.fc27
2018-10-23 21:25:01