Lucene search
K

91 matches found

Prion
Prion
added 2012/05/18 6:55 p.m.23 views

Command injection

sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address...

7.2CVSS6.6AI score0.00399EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2012/05/18 6:0 p.m.23 views

CVE-2012-2337

sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address...

7.4AI score0.00399EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2012/05/18 6:0 p.m.25 views

CVE-2012-2337

sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address...

7.2CVSS3.5AI score0.00399EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/05/16 2:0 p.m.25 views

CVE-2012-2337

sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address...

7.2CVSS7.1AI score0.00399EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/04/25 12:0 a.m.36 views

Debian DSA-2456-1 : dropbear - use after free

Danny Fullerton discovered a use-after-free in the Dropbear SSH daemon, resulting in potential execution of arbitrary code. Exploitation is limited to users, who have been authenticated through public key authentication and for which command restrictions are in place. %NASLMINLEVEL 70300 C Tenabl...

7.1CVSS8.5AI score0.06489EPSS
Exploits0References3
Debian
Debian
added 2012/04/24 8:18 p.m.59 views

[SECURITY] [DSA 2456-1] dropbear security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2456-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 23, 2012 http://www.debian.org/security/faq -...

7.1CVSS9.6AI score0.06489EPSS
Exploits0
OSV
OSV
added 2012/04/23 12:0 a.m.8 views

DSA-2456-1 dropbear - use after free

Bulletin has no description...

7.1CVSS6.3AI score0.06489EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/01/10 12:0 a.m.37 views

Cisco IOS Command EXEC Unspecified Vulnerability

An unspecified vulnerability in Command EXEC allows local users to bypass command restrictions and obtain sensitive information via an unspecified 'variation of an IOS command'. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17775; scriptversion"1.5";...

2.1CVSS5.4AI score0.00374EPSS
Exploits0References1
Prion
Prion
added 2007/10/18 8:17 p.m.16 views

Command injection

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague...

2.1CVSS6.3AI score0.00374EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/03/16 12:0 a.m.27 views

GLSA-200703-13 : SSH Communications Security's Secure Shell Server: SFTP privilege escalation

The remote host is affected by the vulnerability described in GLSA-200703-13 SSH Communications Security's Secure Shell Server: SFTP privilege escalation The SSH Secure Shell Server contains a format string vulnerability in the SFTP code that handles file transfers scp2 and sftp2. In some...

6.5CVSS5.8AI score0.10188EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.33 views

Mandrake Linux Security Advisory : sendmail (MDKSA-2002:083)

A vulnerability was discovered by zen-parse and Pedram Amini in the sendmail MTA. They found two ways to exploit smrsh, an application intended as a replacement for the sh shell for use with sendmail; the first by inserting specially formatted commands in the /.forward file and secondly by callin...

4.6CVSS5.6AI score0.01099EPSS
Exploits2References2
Rows per page
Query Builder