CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CBLMariner•added 2025/01/12 9:15 a.m.•221 views

CVE-2012-2653 affecting package arpwatch 2.1a15-51

CVE-2012-2653 affecting package arpwatch 2.1a15-51. This CVE either no longer is or was never applicable...

OpenVAS•added 2021/06/09 12:0 a.m.•8 views

SUSE: Security Advisory (SUSE-SU-2012:0987-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.6AI score0.03202EPSS

Tenable Nessus•added 2016/07/21 12:0 a.m.•17 views

GLSA-201607-16 : arpwatch: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201607-16 arpwatch: Privilege escalation Arpwatch does not properly drop supplementary groups. Impact : Attackers, if able to exploit arpwatch, could escalate privileges outside of the running process. Workaround : There is no kno...

10CVSS7.3AI score0.03202EPSS

Tenable Nessus•added 2014/06/13 12:0 a.m.•13 views

openSUSE Security Update : arpwatch (openSUSE-SU-2012:0915-1)

Changes in arpwatch : - arpwatch-2.1a11-drop-privs.dif: call initgroups with pw-pwgid, not NULL, to not have groupid 0 initialized. bnc764521, CVE-2012-2653 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

10CVSS8.2AI score0.03202EPSS

Tenable Nessus•added 2013/04/20 12:0 a.m.•22 views

Mandriva Linux Security Advisory : arpwatch (MDVSA-2013:030)

A vulnerability has been discovered and corrected in arpwatch : arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon CVE-2012-265...

10CVSS8AI score0.03202EPSS

Exploits0References1

Tenable Nessus•added 2013/01/25 12:0 a.m.•18 views

SuSE 11.1 Security Update : arpwatch (SAT Patch Number 6570)

arpwatch was improperly dropping its privileges. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc...

10CVSS9.1AI score0.03202EPSS

Tenable Nessus•added 2012/09/06 12:0 a.m.•22 views

Mandriva Linux Security Advisory : arpwatch (MDVSA-2012:113)

10CVSS7.9AI score0.03202EPSS

Exploits0References1

OpenVAS•added 2012/08/30 12:0 a.m.•15 views

Fedora Update for arpwatch FEDORA-2012-8677

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

NVD•added 2012/07/12 8:55 p.m.•7 views

CVE-2012-2653

arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon...

10CVSS6.7AI score0.03202EPSS

Exploits0References10

Cvelist•added 2012/07/12 8:0 p.m.•17 views

CVE-2012-2653

6.7AI score0.03202EPSS

Exploits0References10

CVE•added 2012/07/12 8:0 p.m.•188 views

CVE-2012-2653

CVE-2012-2653 affects arpwatch 2.1a15 (used by Red Hat, Debian, Fedora, and others). The root cause is failure to drop supplementary groups, which may allow a local attacker to gain root privileges by leveraging other vulnerabilities in the daemon. Impact: local privilege escalation; CVSS data in...

Exploits0References10Affected Software1

Tenable Nessus•added 2012/06/29 12:0 a.m.•24 views

Debian DSA-2481-1 : arpwatch - fails to drop supplementary groups

Steve Grubb from Red Hat discovered that a patch for arpwatch as shipped at least in Red Hat and Debian distributions in order to make it drop root privileges would fail to do so and instead add the root group to the list of the daemon uses. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...

10CVSS8.1AI score0.03202EPSS

Exploits0References4

OpenVAS•added 2012/06/22 12:0 a.m.•18 views

Fedora Update for arpwatch FEDORA-2012-8675

OpenVAS•added 2012/06/22 12:0 a.m.•19 views

Fedora Update for arpwatch FEDORA-2012-8702

Tenable Nessus•added 2012/06/20 12:0 a.m.•19 views

Fedora 15 : arpwatch-2.1a15-16.fc15 (2012-8702)

with '-u' fix supplementary group list 825328 CVE-2012-2653 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

10CVSS8.1AI score0.03202EPSS

Tenable Nessus•added 2012/06/20 12:0 a.m.•23 views

Fedora 17 : arpwatch-2.1a15-20.fc17 (2012-8677)

10CVSS8.1AI score0.03202EPSS

securityvulns•added 2012/06/17 12:0 a.m.•55 views

[SECURITY] [DSA 2481-1] arpwatch security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2481-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez June 2, 2012 http://www.debian.org/security/faq -...

10CVSS1.5AI score0.03202EPSS

Debian•added 2012/06/02 1:6 p.m.•19 views

[SECURITY] [DSA 2482-1] libgdata security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2482-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez June 2, 2012 http://www.debian.org/security/faq -...

10CVSS9.3AI score0.03202EPSS

Debian•added 2012/06/02 12:52 p.m.•22 views

[SECURITY] [DSA 2482-1] arpwatch security update

10CVSS9.3AI score0.03202EPSS