Lucene search
GoogleOSV:CVE-2016-4484HistoryJan 23, 2017 - 9:59 p.m.
CVE-2016-4484
2017-01-2321:59:01
Google
osv.dev
3
The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cryptsetup | eq | 1_4_3 | |
| cryptsetup | eq | 1_6_7 | |
| cryptsetup | eq | 1_6_1 | |
| cryptsetup | eq | 1_6_8 | |
| cryptsetup | eq | 1_6_3 | |
| cryptsetup | eq | 1_7_0 | |
| cryptsetup | eq | 1_6_0 | |
| cryptsetup | eq | 1_6_2 | |
| cryptsetup | eq | 1_5_1 | |
| cryptsetup | eq | 1_4_2 |
References
hmarco.org/bugs/CVE-2016-4484/CVE-2016-4484_cryptsetup_initrd_shell.html
www.openwall.com/lists/oss-security/2016/11/14/13
www.openwall.com/lists/oss-security/2016/11/15/1
www.openwall.com/lists/oss-security/2016/11/15/4
www.openwall.com/lists/oss-security/2016/11/16/6
www.securityfocus.com/bid/94315
gitlab.com/cryptsetup/cryptsetup/commit/ef8a7d82d8d3716ae9b58179590f7908981fa0cb
Related
vulnerlab
vulnerlab
CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate
2016-11-18 00:00:00
CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate
2016-11-18 00:00:00
cve
cve
CVE-2016-4484
2017-01-23 21:59:01
prion
prion
Default credentials
2017-01-23 21:59:00
ubuntucve
ubuntucve
CVE-2016-4484
2017-01-23 00:00:00
nessus
nessus
RHEL 6 : dracut (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : dracut (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : dracut (Unpatched Vulnerability)
2024-06-03 00:00:00
redhatcve
redhatcve
CVE-2016-4484
2016-11-15 09:17:17
debiancve
debiancve
CVE-2016-4484
2017-01-23 21:59:01
rosalinux
rosalinux
Advisory ROSA-SA-2021-1815
2021-07-02 16:35:08
thn
thn
This Hack Gives Linux Root Shell Just By Pressing 'ENTER' for 70 Seconds
2016-11-15 22:40:00
seebug
seebug
Cryptsetup Initrd LUKS root Shell privilege escalation vulnerability
2016-11-17 00:00:00
cvelist
cvelist
CVE-2016-4484
2017-01-23 21:00:00
zdt
zdt
Cryptsetup 2:1.7.3-2 Root Initramfs Shell Vulnerability
2016-11-16 00:00:00
nvd
nvd
CVE-2016-4484
2017-01-23 21:59:01
threatpost
threatpost
Cryptsetup Vulnerability Grants Root Shell Access on Some Linux Systems
2016-11-15 15:28:18