5 matches found
EUVD-2018-0570
Malware in sbrugna...
EUVD-2018-0595
Malware in sbrugna...
EUVD-2018-0392
Malware in sbrugna...
DEBIAN-CVE-2017-16355
In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 fixed in Passenger Open Source 5.1.11 and Passenger Enterprise 5.1.10, if Passenger is running as root, it is possible to list the contents of arbitrary files on a system by symlinking a file named REVISION from the application root...
Arbitrary File List Read
passenger is vulnerable to arbitrary file list reading. If passenger is run as root, an attacker who has write access to an application can read a list of files contained within a directory...