Lucene search
K

855 matches found

Prion
Prion
added 2017/07/25 6:29 p.m.8 views

Information disclosure

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

2.1CVSS6.1AI score0.00446EPSS
Exploits0References5
OSV
OSV
added 2017/07/25 6:29 p.m.2 views

DEBIAN-CVE-2015-3243

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

5.5CVSS6.2AI score0.00446EPSS
Exploits0References1
OSV
OSV
added 2017/07/25 6:29 p.m.4 views

CVE-2015-3243

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

5.5CVSS5AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2017/07/25 6:29 p.m.17 views

CVE-2015-3243

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

5.5CVSS6.4AI score0.00446EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/07/25 6:0 p.m.19 views

CVE-2015-3243

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

5AI score0.00446EPSS
Exploits0References5
CVE
CVE
added 2017/07/25 6:0 p.m.80 views

CVE-2015-3243

CVE-2015-3243 affects rsyslog. The issue arises from weak permissions used when generating log files, allowing local users to read files in /var/log/cron and obtain sensitive information. Connected advisories reference RSYSLOG updates/patches from SUSE/OpenSUSE and related vulnerability plugins, ...

5.5CVSS5.2AI score0.00446EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2017/07/25 6:0 p.m.349 views

CVE-2015-3243

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron...

5.5CVSS5.5AI score0.00446EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2017/05/18 12:0 a.m.5 views

PT-2017-4282 · Rsyslog +1 · Rsyslog +1

Name of the Vulnerable Software and Affected Versions: Rsyslog versions prior to 8.28.0 Description: The issue is related to insufficient processing of format strings in the input/output modules of the Rsyslog utility for log processing. Exploitation of this issue could allow a remote attacker to...

10CVSS9.4AI score0.02834EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2017/05/16 12:0 a.m.2 views

PT-2017-4326 · Rsyslog +5 · Rsyslog +5

Name of the Vulnerable Software and Affected Versions: rsyslog versions prior to 8.27.0 Description: The issue is related to an integer overflow in the imptcp module of the Rsyslog log processing utility. It allows a remote attacker to cause a denial of service. An attacker could send a specially...

9.8CVSS6.1AI score0.04568EPSS
Exploits0References57
0day.today
0day.today
added 2017/02/14 12:0 a.m.69 views

Linux Kernel 3.10.0 (CentOS7) Denial Of Service Exploit

CentOS7 suffers from a kernel crashing denial of service issue triggered by an rsyslog daemon vulnerability. Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Test...

7.8CVSS7.4AI score0.2389EPSS
Exploits3
Packet Storm
Packet Storm
added 2017/02/14 12:0 a.m.82 views

CentOS7 Kernel Denial Of Service

Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating System Vulnerable Daemon: RSYSLOG Author Mail...

7.7AI score0.2389EPSS
Exploits3
exploitpack
exploitpack
added 2017/02/12 12:0 a.m.243 views

Linux Kernel 3.10.0 (CentOS 7) - Denial of Service

Linux Kernel 3.10.0 CentOS 7 - Denial of Service / Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating Syste...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/12 12:0 a.m.74 views

Linux Kernel 3.10.0 (CentOS 7) - Denial of Service

/ Exploit Title: CentOS7 Kernel Crashing by rsyslog daemon vulnerability | DOS on CentOS7 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://www.centos.org/ Version : 7 Tested on: Parrot OS Date: 12-2-2017 Category: Operating System Vulnerable Daemon: RSYSLOG Author Mail...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2015/10/30 10:2 a.m.18 views

CVE-2008-5617

The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages...

8.5CVSS6.9AI score0.01906EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.25 views

SUSE: Security Advisory for rsyslog (SUSE-SU-2014:1294-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.2AI score0.07546EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.25 views

Oracle: Security Advisory (ELSA-2012-0796)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.5AI score0.0042EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.23 views

Oracle: Security Advisory (ELSA-2014-1397)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.07546EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.23 views

Oracle: Security Advisory (ELSA-2014-1671)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.07546EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.14 views

Oracle: Security Advisory (ELSA-2011-1247)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.20759EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.19 views

Gentoo Security Advisory GLSA 201412-35

Gentoo Linux Local Security Checks GLSA 201412-35 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS5AI score0.07546EPSS
Exploits2References1
Rows per page
Query Builder