Lucene search
PRIOn knowledge basePRION:CVE-2008-6954HistoryAug 12, 2009 - 10:30 a.m.
Code injection
2009-08-1210:30:00
PRIOn knowledge base
www.prio-n.com
The web interface (CobblerWeb) in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules.
References
freshmeat.net/projects/cobbler/releases/288374
osvdb.org/50291
secunia.com/advisories/32737
secunia.com/advisories/32804
www.securityfocus.com/bid/32317
exchange.xforce.ibmcloud.com/vulnerabilities/46625
www.redhat.com/archives/fedora-package-announce/2008-November/msg00462.html
www.redhat.com/archives/fedora-package-announce/2008-November/msg00485.html
Related
osv
osv
Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
2022-05-17 02:10:02
Cobbler is vulnerable to code injection
2022-05-17 05:45:48
gitlab
gitlab
github
github
Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
2022-05-17 02:10:02
Cobbler is vulnerable to code injection
2022-05-17 05:45:48
openvas
openvas
Fedora Update for cobbler FEDORA-2008-9723
2009-02-17 00:00:00
Fedora Update for cobbler FEDORA-2008-9723
2009-02-17 00:00:00
Fedora Update for cobbler FEDORA-2008-9745
2009-02-17 00:00:00
nvd
nvd
CVE-2008-6954
2009-08-12 10:30:00
CVE-2010-2235
2010-12-09 20:00:17
cvelist
cvelist
CVE-2008-6954
2009-08-12 10:00:00
CVE-2010-2235
2010-12-09 19:00:00
nessus
nessus
Fedora 9 : cobbler-1.2.9-1.fc9 (2008-9745)
2008-11-21 00:00:00
Fedora 8 : cobbler-1.2.9-1.fc8 (2008-9723)
2008-11-21 00:00:00
RHEL 4 / 5 : cobbler (RHSA-2010:0775)
2010-10-18 00:00:00
cve
cve
CVE-2008-6954
2009-08-12 10:30:00
CVE-2010-2235
2010-12-09 20:00:17
prion
prion
Design/Logic Flaw
2010-12-09 20:00:00