855 matches found
Information disclosure
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
DEBIAN-CVE-2015-3243
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
CVE-2015-3243
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
CVE-2015-3243
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
CVE-2015-3243
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
CVE-2015-3243
CVE-2015-3243 affects rsyslog. The issue arises from weak permissions used when generating log files, allowing local users to read files in /var/log/cron and obtain sensitive information. Connected advisories reference RSYSLOG updates/patches from SUSE/OpenSUSE and related vulnerability plugins, ...
CVE-2015-3243
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...
PT-2017-4282 · Rsyslog +1 · Rsyslog +1
Name of the Vulnerable Software and Affected Versions: Rsyslog versions prior to 8.28.0 Description: The issue is related to insufficient processing of format strings in the input/output modules of the Rsyslog utility for log processing. Exploitation of this issue could allow a remote attacker to...
PT-2017-4326 · Rsyslog +5 · Rsyslog +5
Name of the Vulnerable Software and Affected Versions: rsyslog versions prior to 8.27.0 Description: The issue is related to an integer overflow in the imptcp module of the Rsyslog log processing utility. It allows a remote attacker to cause a denial of service. An attacker could send a specially...
Linux Kernel 3.10.0 (CentOS7) Denial Of Service Exploit
CentOS7 suffers from a kernel crashing denial of service issue triggered by an rsyslog daemon vulnerability. Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Test...
CentOS7 Kernel Denial Of Service
Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating System Vulnerable Daemon: RSYSLOG Author Mail...
Linux Kernel 3.10.0 (CentOS 7) - Denial of Service
Linux Kernel 3.10.0 CentOS 7 - Denial of Service / Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating Syste...
Linux Kernel 3.10.0 (CentOS 7) - Denial of Service
/ Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating System Vulnerable Daemon: RSYSLOG Author Mail...
CVE-2008-5617
The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages...
SUSE: Security Advisory for rsyslog (SUSE-SU-2014:1294-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2012-0796)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2014-1397)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2014-1671)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2011-1247)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201412-35
Gentoo Linux Local Security Checks GLSA 201412-35 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...