Lucene search
K

110 matches found

OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.22 views

FreeBSD Ports: sharutils

The remote host is missing an update to the system as announced in the referenced advisory. VID 26c9e8c6-1c99-11d9-814e-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

7.5CVSS0.3AI score0.02992EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.23 views

CentOS 3 / 4 : sharutils (CESA-2005:377)

An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bug was found i...

7.5CVSS6.2AI score0.02992EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.20 views

Ubuntu 4.10 : sharutils vulnerability (USN-104-1)

Joey Hess discovered that 'unshar' created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. Note that Tenable Network Security has extracted the preceding description block...

5.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/09/12 12:0 a.m.22 views

Fedora Core 3 : sharutils-4.2.1-22.1.FC3 (2005-281)

Thu Mar 31 2005 Than Ngo 4.2.1-22.1.FC3 - apply patch to fix multiple buffer overflows 152574 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

5.7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/09/12 12:0 a.m.33 views

Fedora Core 3 : sharutils-4.2.1-22.2.FC3 (2005-319)

Mon Apr 11 2005 Than Ngo 4.2.1-22.2.FC3 - apply debian patch to fix insecure temporary file creation in unshar 154049, CVE-2005-0990 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

2.1CVSS5.3AI score0.00362EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.30 views

FreeBSD : sharutils -- unshar insecure temporary file creation (5f003a08-ba3c-11d9-837d-000e0c2e438a)

An Ubuntu Advisory reports : Joey Hess discovered that 'unshar' created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

2.1CVSS5.6AI score0.00362EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2005/05/19 12:0 a.m.32 views

Fedora Core 2 : sharutils-4.2.1-18.1.FC2 (2005-280)

Thu Mar 31 2005 Than Ngo 4.2.1-18.1.FC2 - apply patch to fix multiple buffer overflows 152571 - apply patch to fix buffer overflow in handling of -o option, CVE-2004-1772, 123230 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

4.6CVSS5.7AI score0.00649EPSS
Exploits1References1
NVD
NVD
added 2005/05/02 4:0 a.m.14 views

CVE-2005-0990

unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...

2.1CVSS6AI score0.00362EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.20 views

CVE-2005-0990

unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...

2.1CVSS5.9AI score0.00362EPSS
Exploits0References1
OSV
OSV
added 2005/05/02 4:0 a.m.6 views

CVE-2005-0990

unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...

6AI score
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2005/04/27 12:0 a.m.21 views

RHEL 4 : sharutils (RHSA-2005:377)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:377 advisory. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bu...

7.5CVSS6.4AI score0.02992EPSS
Exploits1References9
Cent OS
Cent OS
added 2005/04/26 10:37 p.m.66 views

sharutils security update

CentOS Errata and Security Advisory CESA-2005:377-01 An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary o...

7.5CVSS6.2AI score0.02992EPSS
Exploits1References8
Cent OS
Cent OS
added 2005/04/26 5:53 p.m.66 views

cvs, sharutils security update

CentOS Errata and Security Advisory CESA-2005:377 An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or...

7.5CVSS6.2AI score0.02992EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2005/04/26 4:31 p.m.5 views

security flaw

unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...

2.1CVSS5.8AI score0.00362EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/04/26 4:31 p.m.26 views

Low: Red Hat Security Advisory: sharutils security update

An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bug was found i...

7.5CVSS6.2AI score0.02992EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/04/26 4:31 p.m.9 views

security flaw

Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via 1 long output from wc to shar, or 2 unknown vectors in unshar...

7.5CVSS6.3AI score0.02992EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/04/26 4:31 p.m.4 views

security flaw

Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument...

4.6CVSS6.4AI score0.00649EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2005/04/08 12:0 a.m.27 views

Mandrake Linux Security Advisory : sharutils (MDKSA-2005:067)

Shaun Colley discovered a buffer overflow in shar that was triggered by output files using -o with names longer than 49 characters which could be exploited to run arbitrary attacker-specified code. Ulf Harnhammar discovered that shar does not check the data length returned by the wc command. Joey...

7.5CVSS6AI score0.02992EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2005/04/07 12:0 a.m.20 views

GLSA-200504-06 : sharutils: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200504-06 sharutils: Insecure temporary file creation Joey Hess has discovered that the program unshar, which is a part of sharutils, creates temporary files in a world-writable directory with predictable names. Impact : A local...

5.6AI score
Exploits0References2
CVE
CVE
added 2005/04/06 4:0 a.m.59 views

CVE-2005-0990

CVE-2005-0990 affects sharutils 4.2.1, specifically unshar.c, where a local user can perform a symlink attack on the unsh.X temporary file to overwrite arbitrary files. This is described across multiple sources (NVD entry for CVE-2005-0990, Debian/OSV references, and Red Hat/CentOS advisories) an...

2.1CVSS5.9AI score0.00362EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder