76 matches found
Astra Linux - уязвимость в exuberant-ctags
A flaw was discovered in Exuberant Ctags regarding its handling of the "-o" option. This option specifies the tag filename. A specially crafted tag filename, specified either in the command line or in the configuration file, can lead to arbitrary command execution. This occurs because the...
EUVD-2001-0427
Malware in sbrugna...
EUVD-2014-7078
Malware in sbrugna...
Amazon Linux AMI : ctags (ALAS-2025-1974)
The version of ctags installed on the remote host is prior to 5.8-2.7. It is, therefore, affected by a vulnerability as referenced in the ALAS-2025-1974 advisory. A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filenam...
Medium: ctags
Issue Overview: A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls...
Amazon Linux 2 : ctags (ALAS-2023-2343)
The version of ctags installed on the remote host is prior to 5.8-23. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2343 advisory. A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filenam...
The vulnerability of the externalSortTags function in the sort.c utility for creating file indexes for the Exuberant Ctags program allows a hacker to execute arbitrary commands.
The vulnerability of the externalSortTags function in the Exuberant Ctags file indexing utility exists because measures to neutralize special elements used in operating system commands are not taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
Oracle Linux 8 : ctags (ELSA-2023-2863)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2863 advisory. 5.8-23 - CVE-2022-4515, arbitrary code execution issue Resolves: rhbz2153787 Tenable has extracted the preceding description block directly from the Oracle Linu...
AlmaLinux 8 : ctags (ALSA-2023:2863)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2863 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filename specified in the command...
ctags: arbitrary command execution via a tag file with a crafted filename
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls the system3...
CentOS 8 : ctags (CESA-2023:2863)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:2863 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filename specified in the comma...
Mageia: Security Advisory (MGASA-2023-0003)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CBL Mariner 2.0 Security Update: ctags (CVE-2022-4515)
The version of ctags installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4515 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filenam...
Arbitrary Code Execution
exuberant-ctags is vulnerable to Arbitrary Code Execution. The vulnerability exists due to the improper handling of the "-o" option in externalSortTags of sort.c, allowing an attacker to inject and execute malicious code...
Debian: Security Advisory (DLA-69-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2014-7204
jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service infinite loop and CPU and disk consumption via a crafted JavaScript file...
SUSE CVE-2022-4515
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls the system3...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ctags (SUSE-SU-2023:0225-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0225-1 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag...
SUSE SLES12 Security Update : ctags (SUSE-SU-2023:0224-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0224-1 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filename...
USN-5820-1 exuberant-ctags vulnerability
Lorenz Hipp discovered a flaw in exuberant-ctags handling of the tag filename command-line argument. A crafted tag filename specified in the command line or in the configuration file could result in arbitrary command execution...