38 matches found
AZL-31746 CVE-2023-46316 affecting package traceroute for versions less than 2.1.3-1
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
DEBIAN-CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
UBUNTU-CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
traceroute security vulnerability
traceroute is a package for executing traceroute-related commands by James Weston, an individual developer in the United States. A security vulnerability exists in Traceroute versions 2.0.12 through 2.1.2, which stems from the inability of wrapper scripts to properly parse command lines...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
CVE-2023-46316
CVE-2023-46316 affects buc Traceroute 2.0.12 through 2.1.2; the wrapper scripts fail to parse command lines correctly, enabling local impact (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). Public advisories/errata indicate the fix is to upgrade traceroute to version 2.1.3 or later (e.g., traceroute 2.1.3 ...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
CVE-2023-46316
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...
SUSE CVE-2008-4951
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...
SuSE 11.2 Security Update : PHP5 (SAT Patch Number 6440)
PHP5 was updated with incremental fixes to the previous update. - Additional unsafe cgi wrapper scripts are also fixed now. CVE-2012-2335 - Even more commandline option handling is filtered, which could lead to crashes of the php interpreter. CVE-2012-2336 - heap-based buffer overflow in php's ph...
foomatic-filters: User-assisted execution of arbitrary code
Background The foomatic-filters package contains wrapper scripts which are designed to be used with Foomatic. Description The foomatic-rip filter improperly handles command-line arguments, including those issued by FoomaticRIPCommandLine fields in PPD files. Impact A remote attacker could entice ...
CVE-2008-4951
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...
CVE-2008-4951
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...
Design/Logic Flaw
Untrusted search path vulnerability in the wrapper scripts for the 1 rug, 2 zen-updater, 3 zen-installer, and 4 zen-remover programs on SUSE Linux 10.1 and Enterprise 10 allows local users to gain privileges via modified a LDLIBRARYPATH and b MONOGACPREFIX environment variables...
Fedora Core 5 : beagle-0.2.3-4 (2006-188)
Some of the wrapper scripts including beagle-status looked in the current directory for files with a specific name and ran that instead of the binary in the path. All such cases have been fixed in this release. Note that Tenable Network Security has extracted the preceding description block...