Lucene search
K

4773 matches found

RedHat Linux
RedHat Linux
added 2015/07/20 1:59 p.m.36 views

Moderate: Red Hat Security Advisory: autofs security and bug fix update

Updated autofs packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

4.4CVSS5.7AI score0.00335EPSS
Exploits0References6
Kitploit
Kitploit
added 2015/07/10 3:31 p.m.75 views

Johnny - GUI for John the Ripper

Johnny is a cross-platform open-source GUI for the popular password cracker John the Ripper. Features 1. user could start, pause and resume attack though only one session is allowed globally, 2. all attack related options work, 3. all input file formats are supported pure hashes, pwdump, passwd,...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.11 views

Ubuntu: Security Advisory (USN-2617-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS6.6AI score0.01008EPSS
Exploits5References2
CERT
CERT
added 2015/06/08 12:0 a.m.69 views

Toshiba 4690 OS contains an information disclosure vulnerability

Overview The Toshiba 4690 operating system, version 6 Release 3 and possibly earlier versions, contains an information disclosure vulnerability. Description CWE-200: Information Exposure - CVE-2014-4876The Toshiba 4690 operating system, version 6 Release 3 and possibly earlier versions, contains...

4.3CVSS4.2AI score0.01658EPSS
Exploits0References2
CNVD
CNVD
added 2015/06/07 12:0 a.m.3 views

CA Common Services Local Elevation of Privilege Vulnerability

CA is a leading global provider of IT management software and solutions, with products and technologies that span the full spectrum of IT environments, from mainframes to distributed systems, from virtualization to the cloud. CA Common Services has a security issue with the handling of environmen...

4.6CVSS6.5AI score0.00459EPSS
Exploits0References1
Mageia
Mageia
added 2015/05/27 4:57 p.m.42 views

Updated fuse packages fix CVE-2015-3202

Updated fuse packages fix security vulnerability: Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrative privileges CVE-2015-3202...

3.6CVSS6.5AI score0.01008EPSS
Exploits5References2
Ubuntu
Ubuntu
added 2015/05/27 1:19 p.m.49 views

USN-2617-3: NTFS-3G vulnerability

USN-2617-1 fixed a vulnerability in NTFS-3G. The original patch did not completely address the issue. This update fixes the problem. Original advisory details: Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrati...

3.6CVSS6.5AI score0.01008EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2015/05/27 12:0 a.m.21 views

Ubuntu 15.04 : ntfs-3g vulnerability (USN-2617-3)

USN-2617-1 fixed a vulnerability in NTFS-3G. The original patch did not completely address the issue. This update fixes the problem. Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrative privileges. Note that...

3.6CVSS6.4AI score0.01008EPSS
Exploits5References2
securityvulns
securityvulns
added 2015/05/25 12:0 a.m.31 views

fuse NTFS-3G privilege escalation

Insufficient filtering of environment variables...

3.6CVSS3.9AI score0.01008EPSS
Exploits5References1Affected Software1
Ubuntu
Ubuntu
added 2015/05/22 2:5 p.m.54 views

USN-2617-2: NTFS-3G vulnerability

USN-2617-1 fixed a vulnerability in FUSE. This update provides the corresponding fix for the embedded FUSE copy in NTFS-3G. Original advisory details: Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrative...

3.6CVSS6.6AI score0.01008EPSS
Exploits5
OSV
OSV
added 2015/05/21 4:2 p.m.2 views

USN-2617-1 fuse vulnerability

Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrative privileges...

3.6CVSS6.7AI score0.01008EPSS
Exploits5References2
n0where
n0where
added 2015/05/11 2:59 p.m.25 views

Extract Metadata From Files: ImageCat

Extract Metadata From Files This is an OODT RADIX application that uses Apache Solr , Apache Tika and Apache OODT to ingest 10s of millions of files images,but could be extended to other files in place, and to extract metadata and OCR information from those files/images using Tika and Tesseract O...

6.9AI score
Exploits0References5
CNVD
CNVD
added 2015/05/04 12:0 a.m.1 views

ABRT abrt-action-install-debuginfo-to-abrt-cache local elevation of privilege vulnerability

ABRT is an automated bug reporting tool. ABRT abrt-action-install-debuginfo-to-abrt-cache handles environment variables with vulnerabilities that allow local attackers to exploit exploits for elevation of privilege...

7.8CVSS6.7AI score0.00392EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/28 12:0 a.m.28 views

Ubuntu 14.10 : autofs vulnerability (USN-2579-1)

It was discovered that autofs incorrectly filtered environment variables when using program maps. When program maps were configured, a local user could use this issue to escalate privileges. This update changes the default behaviour by adding a prefix to environment variables. Sites using program...

4.4CVSS5.4AI score0.00335EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/04/28 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-2579-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS6.5AI score0.00335EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2015/04/27 12:44 p.m.56 views

USN-2579-1: autofs vulnerability

It was discovered that autofs incorrectly filtered environment variables when using program maps. When program maps were configured, a local user could use this issue to escalate privileges. This update changes the default behaviour by adding a prefix to environment variables. Sites using program...

4.4CVSS5.3AI score0.00335EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.59 views

Mandriva Linux Security Advisory : bash (MDVSA-2015:164)

Updated bash packages fix security vulnerability : A flaw was found in the way Bash evaluated certain specially crafted environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Certain services and applications allow remote...

10CVSS8AI score0.99999EPSS
Exploits157References9
Prion
Prion
added 2015/03/18 4:59 p.m.20 views

Directory traversal

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home...

4.4CVSS6.8AI score0.00335EPSS
Exploits0References7Affected Software6
NVD
NVD
added 2015/03/18 4:59 p.m.14 views

CVE-2014-8169

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home...

4.4CVSS6.3AI score0.00335EPSS
Exploits0References7
OSV
OSV
added 2015/03/18 4:59 p.m.2 views

DEBIAN-CVE-2014-8169

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home...

4.4CVSS7AI score0.00335EPSS
Exploits0References1
Rows per page
Query Builder