Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-4155

Malware in sbrugna...

8.4CVSS8.2AI score0.00399EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.2 views

SUSE CVE-2020-27746

Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem...

3.7CVSS6.7AI score0.00824EPSS
Exploits0References15
CNVD
CNVD
added 2016/07/14 12:0 a.m.7 views

KDE Frameworks Elevation of Privilege Vulnerability

KDE Frameworks is a collection of technical libraries and software frameworks for KDE applications developed by the KDE community. kinit is one of the command line tools used to fetch and cache Kerberos tickets. A privilege-granting and access-control vulnerability exists in kinit in KDE Framewor...

8.4CVSS6.8AI score0.00399EPSS
Exploits0References1
NVD
NVD
added 2016/07/13 3:59 p.m.24 views

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.4CVSS8.3AI score0.00399EPSS
Exploits0References8
OSV
OSV
added 2016/07/13 3:59 p.m.9 views

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.4CVSS8.2AI score
Exploits0References8
Cvelist
Cvelist
added 2016/07/13 3:0 p.m.22 views

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.3AI score0.00399EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2016/07/13 3:0 p.m.28 views

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.4CVSS8.3AI score0.00399EPSS
Exploits0
CVE
CVE
added 2016/07/13 3:0 p.m.49 views

CVE-2016-3100

KDE Frameworks components suffer from a local-privilege issue in kinit prior to v5.23.0: the directory /tmp/xauth-xxx-_y is created with weak permissions (644), enabling local users to read X11 cookies of other users and potentially capture keystrokes or escalate privileges. Remediation: upgrade ...

8.4CVSS8.1AI score0.00399EPSS
Exploits0References8Affected Software2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.30 views

Oracle Linux 5 : openssh (ELSA-2008-0855)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0855 advisory. 4.3p2-26.el52.1 - CVE-2007-4752 - Prevent ssh1 from using a trusted X11 cookie if creation of an untrusted cookie fails 280361 Tenable has extracted th...

9.3CVSS7.7AI score0.02674EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.47 views

CentOS 4 / 5 : openssh (CESA-2008:0855)

Updated openssh packages are now available for Red Hat Enterprise Linux 4, Red Hat Enterprise Linux 5, and Red Hat Enterprise Linux 4.5 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHe...

9.3CVSS7.5AI score0.02674EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-566-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.34 views

RedHat Update for openssh RHSA-2008:0855-01

Check for the Version of openssh OpenVAS Vulnerability Test RedHat Update for openssh RHSA-2008:0855-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS7.2AI score0.02374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.39 views

RedHat Update for openssh RHSA-2008:0855-01

Check for the Version of openssh OpenVAS Vulnerability Test RedHat Update for openssh RHSA-2008:0855-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS7.2AI score0.02374EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/08/24 12:0 a.m.52 views

RHEL 4 / 5 : openssh (RHSA-2008:0855)

Updated openssh packages are now available for Red Hat Enterprise Linux 4, Red Hat Enterprise Linux 5, and Red Hat Enterprise Linux 4.5 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHe...

9.3CVSS7.5AI score0.02674EPSS
Exploits0References6
Cent OS
Cent OS
added 2008/08/22 8:45 p.m.102 views

openssh security update

CentOS Errata and Security Advisory CESA-2008:0855 Updated openssh packages are now available for Red Hat Enterprise Linux 4, Red Hat Enterprise Linux 5, and Red Hat Enterprise Linux 4.5 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security...

9.3CVSS7.2AI score0.02674EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2008/08/22 12:10 p.m.74 views

Critical: Red Hat Security Advisory: openssh security update

Updated openssh packages are now available for Red Hat Enterprise Linux 4, Red Hat Enterprise Linux 5, and Red Hat Enterprise Linux 4.5 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHe...

9.3CVSS7.2AI score0.02674EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/01/10 12:0 a.m.42 views

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : openssh vulnerability (USN-566-1)

Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...

7.5CVSS7.5AI score0.02374EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2008/01/09 11:42 p.m.80 views

USN-566-1: OpenSSH vulnerability

Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host...

7.5CVSS7.5AI score0.02374EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/16 12:0 a.m.40 views

Fedora Core 6 : openssh-4.3p2-25.fc6 (2007-715)

Tue Oct 2 2007 Tomas Mraz - 4.3p2-25 - do not fall back on trusted X11 cookies CVE-2007-4752 280471 - Fri Jul 13 2007 Tomas Mraz - 4.3p2-24 - fixed audit log injection problem CVE-2007-3102 248059 - Thu Jun 21 2007 Tomas Mraz - 4.3p2-23 - document where the nss certificate and token dbs are...

7.5CVSS6.6AI score0.02374EPSS
Exploits0References3
securityvulns
securityvulns
added 2007/09/19 12:0 a.m.1619 views

OpenSSH privilege escalation

Invalid usage of X11 cookies...

7.5CVSS3.2AI score0.02374EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder