Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:55 a.m.3 views

SUSE CVE-2020-16127

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled /.pamenvironment files, allowing an infinite loop if /dev/zero is symlinked to this location...

5.5CVSS6.9AI score0.00409EPSS
Exploits2References3
Rosalinux
Rosalinux
added 2021/07/02 4:31 p.m.23 views

Advisory ROSA-SA-2021-1804

Software: accountservice 0.6.50 OS: Cobalt 7.9 CVE-ID: CVE-2020-16126 CVE-Crit: LOW CVE-DESC: Ubuntu-specific modification of AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, incorrectly removed ruid, allowing untrusted users to send signals to AccountsService,...

5.5CVSS6.8AI score0.00541EPSS
Exploits3
GithubExploit
GithubExploit
added 2020/11/12 9:58 a.m.292 views

Exploit for Improper Privilege Management in Freedesktop Accountsservice

Ubuntu-Gnome-privilege-escalation A bash script exploit of CV...

5.5CVSS5.8AI score0.00541EPSS
Exploits3
Circl
Circl
added 2020/11/11 7:28 a.m.3 views

CVE-2020-16127

creationtimestamp| type| source ---|---|--- 2020-11-11 07:28:26+00:00| seen| https://t.me/cibsecurity/16141...

5.5CVSS5.7AI score0.00409EPSS
Exploits2References1
Cvelist
Cvelist
added 2020/11/11 4:10 a.m.24 views

CVE-2020-16127 accountsservice .pam_environment infinite loop

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled /.pamenvironment files, allowing an infinite loop if /dev/zero is symlinked to this location...

2.8CVSS5.4AI score0.00409EPSS
Exploits2References1
CVE
CVE
added 2020/11/11 4:10 a.m.156 views

CVE-2020-16127

CVE-2020-16127 is described as an Ubuntu-specific modification to AccountsService prior to version 0.6.55-0ubuntu13.2 that would perform unbounded reads of user-controlled ~/.pam_environment files, enabling an infinite loop if /dev/zero is symlinked to that location. The impact cited is a local i...

5.5CVSS4.5AI score0.00409EPSS
Exploits2References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.36 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : AccountsService vulnerabilities (USN-4616-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4616-1 advisory. Kevin Backhouse discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cau...

6.5CVSS6.5AI score0.03086EPSS
Exploits4References4
Ubuntu
Ubuntu
added 2020/11/03 3:16 p.m.97 views

USN-4616-1: AccountsService vulnerabilities

Kevin Backhouse discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cause AccountsService to crash or hang, resulting in a denial of service. CVE-2020-16126 Kevin Backhouse discovered that AccountsService incorrectly handled reading...

6.5CVSS6.5AI score0.03086EPSS
Exploits4
Rows per page
Query Builder