Lucene search
+L

302 matches found

CVE
CVE
added 2018/02/09 10:0 p.m.95 views

CVE-2015-1862

CVE-2015-1862 describes a local privilege-escalation in ABRT’s crash reporting. The vulnerability arises when ABRT’s crash-handler code performs an execve after a chroot into a user-specified directory within a named-space; a race condition/symlink handling flaw can allow a local user to influenc...

7CVSS6.7AI score0.03081EPSS
Exploits13References10Affected Software1
Exploit DB
Exploit DB
added 2018/02/05 12:0 a.m.124 views

Apport/ABRT - 'chroot' Local Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apport / ABRT chroot Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems by invoking the...

7.2CVSS7AI score0.04187EPSS
Exploits12
0day.today
0day.today
added 2018/02/03 12:0 a.m.104 views

Apport / ABRT chroot Privilege Escalation Exploit

This Metasploit module attempts to gain root privileges on Linux systems by invoking the default coredump handler inside a namespace "container". Apport versions 2.13 through 2.17.x before 2.17.1 on Ubuntu are vulnerable, due to a feature which allows forwarding reports to a container's Apport by...

7.2CVSS7.2AI score0.04187EPSS
Exploits12
Packet Storm
Packet Storm
added 2018/02/03 12:0 a.m.44 views

Apport / ABRT chroot Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apport / ABRT chroot Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems by invoking the...

7.2CVSS6.9AI score0.04187EPSS
Exploits12
Metasploit
Metasploit
added 2018/01/16 2:52 p.m.35 views

ABRT raceabrt Privilege Escalation

This module attempts to gain root privileges on Linux systems with a vulnerable version of Automatic Bug Reporting Tool ABRT configured as the crash handler. A race condition allows local users to change ownership of arbitrary files CVE-2015-3315. This module uses a symlink attack on...

7.8CVSS6.3AI score0.04776EPSS
Exploits14
Metasploit
Metasploit
added 2018/01/14 8:33 a.m.70 views

Apport / ABRT chroot Privilege Escalation

This module attempts to gain root privileges on Linux systems by invoking the default coredump handler inside a namespace "container". Apport versions 2.13 through 2.17.x before 2.17.1 on Ubuntu are vulnerable, due to a feature which allows forwarding reports to a container's Apport by changing t...

7.2CVSS0.2AI score0.04187EPSS
Exploits12
Prion
Prion
added 2017/06/26 3:29 p.m.18 views

Design/Logic Flaw

Automatic Bug Reporting Tool ABRT allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on 1 /var/tmp/abrt//maps, 2 /tmp/jvm-/hserror.log, 3 /proc//exe, 4 /etc/os-release in a chroot, or 5 an unspecified root directory relate...

7.2CVSS6.7AI score0.04776EPSS
Exploits4References11
Prion
Prion
added 2017/06/26 3:29 p.m.8 views

Design/Logic Flaw

The kernel-invoked coredump processor in Automatic Bug Reporting Tool ABRT does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application...

1.9CVSS6.1AI score0.00345EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2017/06/26 3:29 p.m.11 views

CVE-2015-3142

The kernel-invoked coredump processor in Automatic Bug Reporting Tool ABRT does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application...

4.7CVSS5.3AI score0.00345EPSS
Exploits0References5
Prion
Prion
added 2017/06/26 3:29 p.m.22 views

Design/Logic Flaw

The event scripts in Automatic Bug Reporting Tool ABRT uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors...

2.1CVSS6AI score0.00421EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2017/06/26 3:29 p.m.23 views

CVE-2015-1870

The event scripts in Automatic Bug Reporting Tool ABRT uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors...

5.5CVSS5.6AI score0.00421EPSS
Exploits0References7
NVD
NVD
added 2017/06/26 3:29 p.m.21 views

CVE-2015-3315

Automatic Bug Reporting Tool ABRT allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on 1 /var/tmp/abrt//maps, 2 /tmp/jvm-/hserror.log, 3 /proc//exe, 4 /etc/os-release in a chroot, or 5 an unspecified root directory relate...

7.8CVSS7.5AI score0.04776EPSS
Exploits4References11
Cvelist
Cvelist
added 2017/06/26 3:0 p.m.17 views

CVE-2015-3142

The kernel-invoked coredump processor in Automatic Bug Reporting Tool ABRT does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application...

5.5AI score0.00345EPSS
Exploits0References5
Cvelist
Cvelist
added 2017/06/26 3:0 p.m.24 views

CVE-2015-1870

The event scripts in Automatic Bug Reporting Tool ABRT uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors...

5.8AI score0.00421EPSS
Exploits0References7
Cvelist
Cvelist
added 2017/06/26 3:0 p.m.24 views

CVE-2015-3315

Automatic Bug Reporting Tool ABRT allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on 1 /var/tmp/abrt//maps, 2 /tmp/jvm-/hserror.log, 3 /proc//exe, 4 /etc/os-release in a chroot, or 5 an unspecified root directory relate...

7.4AI score0.04776EPSS
Exploits4References11
CVE
CVE
added 2017/06/26 3:0 p.m.76 views

CVE-2015-3142

CVE-2015-3142 concerns ABRT's kernel-invoked coredump processor failing to check file ownership before writing core dumps, allowing local users to read sensitive data from the crashed application's working directory. Connected docs show advisories for MiracleLinux, Oracle Linux, and Red Hat that ...

4.7CVSS5.3AI score0.00345EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2017/06/26 3:0 p.m.92 views

CVE-2015-1870

Mode C: The connected MiracleLinux 4 advisory references CVE-2015-1870 affecting abrt (Automatic Bug Reporting Tool) and libreport (abrt-2.0.8-26.1.0.1.AXS4, libreport-2.0.9-21.1.0.1.AXS4). The vulnerability arises from event scripts using world-readable permissions on a copy of sosreport files i...

5.5CVSS5.1AI score0.00421EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2017/06/26 3:0 p.m.111 views

CVE-2015-3315

CVE-2015-3315 affects the Automatic Bug Reporting Tool (ABRT) and related libreport components. A local attacker can exploit race conditions and symbolic-link flaws to gain ownership changes of arbitrary files via a symlink attack on paths such as /var/tmp/abrt//maps (and related ABRT paths), pot...

7.8CVSS5.6AI score0.04776EPSS
Exploits4References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.30 views

Fedora 22 : abrt-2.6.1-6.fc22 / libreport-2.6.3-1.fc22 (2015-b81f7e1e86)

Security fix for CVE-2015-5302 abrt-2.6.1-6.fc22 - doc: fix default DumpLocation in abrt.conf man page - abrt-retrace-client: use atoll for size conversion - a-a-a-ccpp-local don't delete buildids - abrt-dump-xorg: support Xorg log backtraces prefixed by EE - bodhi: fix typo in error messages...

5CVSS5.4AI score0.02823EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.22 views

Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...

5CVSS5.3AI score0.02823EPSS
Exploits0References4
Rows per page
Query Builder