Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-17531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote...

8.8CVSS7.8AI score0.01228EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/10 12:0 a.m.33 views

GLSA-202008-02 : GNU GLOBAL: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-202008-02 GNU GLOBAL: Arbitrary code execution A vulnerability was found in an undocumented function of gozilla. Impact : A remote attacker could entice a user to open a specially crafted URL using GNU GLOBAL, possibly resulting i...

8.8CVSS8.3AI score0.01228EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.23 views

Fedora 27 : global (2017-fd9462d9ef)

Security fix for PUT CVEs HERE Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

8.8CVSS7.8AI score0.01228EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/30 12:0 a.m.21 views

Fedora Update for global FEDORA-2017-fd9462d9ef

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.01228EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/28 12:0 a.m.30 views

openSUSE Security Update : global (openSUSE-2017-1420)

This update for global fixes the following issue : - CVE-2017-17531: Argument-injection vulnerability allowed execution of arbitrary code via crafted URLs boo1073197 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

8.8CVSS8.3AI score0.01228EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.13 views

FreeBSD : global -- gozilla vulnerability (48cca164-e269-11e7-be51-6599c735afc8)

MITRE reports : gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

8.8CVSS7.9AI score0.01228EPSS
Exploits0References3
OSV
OSV
added 2017/12/14 4:29 p.m.8 views

CVE-2017-17531

gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS6.6AI score0.01228EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/12/14 4:29 p.m.19 views

CVE-2017-17531

gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS7.2AI score0.01228EPSS
Exploits0References3
OSV
OSV
added 2017/12/14 4:29 p.m.6 views

UBUNTU-CVE-2017-17531

gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS7.3AI score0.01228EPSS
Exploits0References4
CVE
CVE
added 2017/12/14 4:0 p.m.62 views

CVE-2017-17531

GNU GLOBAL 4.8.6’s gozilla.c does not validate strings before launching the program specified by the BROWSER environment variable, enabling remote argument-injection via crafted URLs. Concrete patches exist across distros (e.g., Gentoo GLSA-202008-02; openSUSE openSUSE-2017-1420; Fedora/SUSE advi...

8.8CVSS8.2AI score0.01228EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2017/12/14 4:0 p.m.20 views

CVE-2017-17531

gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.4AI score0.01228EPSS
Exploits0
Rows per page
Query Builder