Lucene search
K

55 matches found

NVD
NVD
added 2020/06/23 8:15 p.m.47 views

CVE-2020-14974

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

7.1CVSS0.00897EPSS
Exploits1References2
Prion
Prion
added 2020/06/23 8:15 p.m.17 views

Code injection

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

6.6CVSS6.9AI score0.00897EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/06/23 7:7 p.m.48 views

CVE-2020-14974

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

7AI score0.00897EPSS
Exploits1References2
Prion
Prion
added 2019/11/20 3:15 p.m.28 views

Code injection

tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes...

4.9CVSS6.9AI score0.00269EPSS
Exploits0References2Affected Software7
NVD
NVD
added 2019/11/08 3:15 p.m.17 views

CVE-2013-1820

tuned before 2.x allows local users to kill running processes due to insecure permissions with tuned's ktune service...

5.5CVSS5.3AI score0.00376EPSS
Exploits0References3
CVE
CVE
added 2019/11/08 2:25 p.m.50 views

CVE-2013-1820

CVE-2013-1820 concerns the tuned daemon (tuned before 2.x) where insecure permissions on tuned’s ktune service allow local users to kill running processes. Multiple sources (NVD entry, Debian/Ubuntu advisories, Red Hat/Nessus plugins) confirm the vulnerability stems from improper access control o...

5.5CVSS5.3AI score0.00376EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/11/08 2:25 p.m.19 views

CVE-2013-1820

tuned before 2.x allows local users to kill running processes due to insecure permissions with tuned's ktune service...

5.3AI score0.00376EPSS
Exploits0References3
OSV
OSV
added 2019/03/05 4:29 p.m.4 views

CVE-2018-19640

If the attacker manages to create files in the directory used to collect log files in supportutils before version 3.1-5.7.1 e.g. with CVE-2018-19638 he can kill arbitrary processes on the local machine...

5.5CVSS5.9AI score0.00301EPSS
Exploits0References2
Prion
Prion
added 2018/06/04 6:29 a.m.16 views

Arbitrary file deletion

The Gentoo app-backup/burp package before 2.1.32 sets the ownership of the PID file directory to the burp account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script sends a SIGKILL...

3.6CVSS6.8AI score0.00273EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2018/02/02 9:0 a.m.36 views

CVE-2018-6536

An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for icinga2.pid modification before a root script...

5.5CVSS5.9AI score0.00262EPSS
Exploits0
OSV
OSV
added 2017/09/20 6:29 p.m.3 views

CVE-2017-14609

The server daemons in Kannel 1.5.0 and earlier create a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname"...

7.8CVSS5.9AI score0.00407EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2017/09/20 6:29 p.m.30 views

CVE-2017-14610

bareos-dir, bareos-fd, and bareos-sd in bareos-core in Bareos 16.2.6 and earlier create a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root scrip...

7.8CVSS7.2AI score0.00322EPSS
Exploits0References2
NVD
NVD
added 2017/09/13 5:29 p.m.13 views

CVE-2017-7560

It was found that rhnsd PID files are created as world-writable that allows local attackers to fill the disks or to kill selected processes...

5.5CVSS5.3AI score0.00252EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/09/13 5:0 p.m.19 views

CVE-2017-7560

Removed by vendor...

5.5CVSS5.5AI score0.00252EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/09/05 6:29 p.m.34 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS6.8AI score0.00349EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/09/05 6:0 p.m.46 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS5.6AI score0.00349EPSS
Exploits0
OSV
OSV
added 2017/09/01 5:29 a.m.1 views

DEBIAN-CVE-2017-14102

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

7.8CVSS6.7AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2017/08/23 9:29 p.m.4 views

UBUNTU-CVE-2017-12847

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "kill cat...

6.3CVSS6.8AI score0.00786EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2017/08/23 9:29 p.m.3 views

CVE-2017-12847

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "kill cat...

6.3CVSS5.7AI score0.00786EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/07/30 4:29 p.m.21 views

CVE-2017-11746

Tenshi 0.15 creates a tenshi.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tenshi.pid modification before a root script executes a "kill cat /pathname/tenshi.pid" command...

7.8CVSS7.2AI score0.0109EPSS
Exploits0References2
Rows per page
Query Builder