Lucene search
K

197 matches found

Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.24 views

openSUSE Security Update : valgrind (valgrind-321)

valgrind reads a file .valgrindrc in the current directory. Therefore local users could place such a file a world-writable directory such as /tmp and influence other users' valgrind when it's executed there CVE-2008-4865. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

7.2CVSS5.3AI score0.00433EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.20 views

Mandriva Linux Security Advisory : valgrind (MDVSA-2009:057)

A vulnerability has been identified and corrected in valgrind : Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command option...

7.2CVSS5.9AI score0.00433EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/03/02 12:0 a.m.20 views

Mandrake Security Advisory MDVSA-2009:057 (valgrind)

The remote host is missing an update to valgrind announced via advisory MDVSA-2009:057. OpenVAS Vulnerability Test $Id: mdksa2009057.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:057 valgrind Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

7.2CVSS0.4AI score0.00433EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/03/02 12:0 a.m.22 views

Mandrake Security Advisory MDVSA-2009:057 (valgrind)

The remote host is missing an update to valgrind announced via advisory MDVSA-2009:057. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

7.2CVSS6.4AI score0.00433EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.19 views

Gentoo Security Advisory GLSA 200902-03 (valgrind)

The remote host is missing updates announced in advisory GLSA 200902-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.2CVSS0.6AI score0.00433EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/02/13 12:0 a.m.25 views

GLSA-200902-03 : Valgrind: Untrusted search path

The remote host is affected by the vulnerability described in GLSA-200902-03 Valgrind: Untrusted search path Tavis Ormandy reported that Valgrind loads a .valgrindrc file in the current working directory, executing commands specified there. Impact : A local attacker could prepare a specially...

7.2CVSS6.1AI score0.00433EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.18 views

Gentoo Security Advisory GLSA 200902-03 (valgrind)

The remote host is missing updates announced in advisory GLSA 200902-03. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

7.2CVSS6.5AI score0.00433EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/12/01 12:0 a.m.28 views

openSUSE 10 Security Update : valgrind (valgrind-5809)

valgrind reads a file .valgrindrc in the current directory. Therefore local users could place such a file a world-writable directory such as /tmp and influence other users' valgrind when it's executed there CVE-2008-4865. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

7.2CVSS5.3AI score0.00433EPSS
Exploits0References1
OSV
OSV
added 2008/11/01 12:0 a.m.1 views

DEBIAN-CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS7.2AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2008/11/01 12:0 a.m.9 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS6.7AI score0.00433EPSS
Exploits0References8
OSV
OSV
added 2008/11/01 12:0 a.m.6 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

6.7AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2008/11/01 12:0 a.m.20 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS6.3AI score0.00433EPSS
Exploits0References1
Prion
Prion
added 2008/11/01 12:0 a.m.11 views

Design/Logic Flaw

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS6.9AI score0.00433EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2008/10/31 10:0 p.m.74 views

CVE-2008-4865

CVE-2008-4865 concerns Valgrind prior to version 3.4.0. The vulnerability is an untrusted search path issue: a Trojan horse named ".valgrindrc" in the current working directory can be read by Valgrind, allowing a local user to influence execution (e.g., via a malicious --db-command). The availabl...

7.2CVSS6.6AI score0.00433EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2008/10/31 10:0 p.m.16 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

6.6AI score0.00433EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2008/10/31 10:0 p.m.28 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS5.2AI score0.00433EPSS
Exploits0
securityvulns
securityvulns
added 2003/04/19 12:0 a.m.30 views

Xinetd 2.3.10 Memory Leaks

BACKGROUND ----------- Xinetd is a popular inetd replacement. Shortly after the 2.3.9 release in September 2002, it was realized that xinetd was leaking file descriptors. That problem turned out to be that file descriptors were not always being closed whenever a connection was rejected. 2.3.10 wa...

5CVSS6.1AI score0.08939EPSS
Exploits1
Rows per page
Query Builder