Lucene search
K

247 matches found

securityvulns
securityvulns
added 2013/10/12 12:0 a.m.55 views

[ MDVSA-2013:248 ] xinetd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:248 http://www.mandriva.com/en/support/security/ Package : xinetd Date : October 10, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated xinetd package fixes security...

7.6CVSS9.5AI score0.06391EPSS
Exploits1
securityvulns
securityvulns
added 2013/10/12 12:0 a.m.41 views

xinetd privilege escalation

tcpmux-server service is executed with root privileges...

7.6CVSS3.7AI score0.06391EPSS
Exploits1References1Affected Software1
Fedora
Fedora
added 2013/10/11 11:56 p.m.25 views

[SECURITY] Fedora 19 Update: xinetd-2.3.15-8.fc19

Xinetd is a secure replacement for inetd, the Internet services daemon. Xinetd provides access control for all services based on the address of the remote host and/or on time of access and can prevent denial-of-access attacks. Xinetd provides extensive logging, has no limit on the number of serve...

7.6CVSS1.3AI score0.06391EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/10/11 12:0 a.m.26 views

Mandriva Linux Security Advisory : xinetd (MDVSA-2013:248)

Updated xinetd package fixes security vulnerability : It was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote...

7.6CVSS5.5AI score0.06391EPSS
Exploits1References2
NVD
NVD
added 2013/10/10 12:55 a.m.16 views

CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS9.5AI score0.06391EPSS
Exploits1References4
OSV
OSV
added 2013/10/10 12:55 a.m.5 views

AZL-35352 CVE-2013-4342 affecting package xinetd for versions less than 2.3.15-14

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS5.8AI score0.06391EPSS
Exploits1References1
OSV
OSV
added 2013/10/10 12:55 a.m.6 views

AZL-13592 CVE-2013-4342 affecting package xinetd for versions less than 2.3.15-14

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS5.8AI score0.06391EPSS
Exploits1References1
OSV
OSV
added 2013/10/10 12:55 a.m.3 views

CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

6.6AI score
Exploits0References5
OSV
OSV
added 2013/10/10 12:55 a.m.1 views

DEBIAN-CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS7.2AI score0.06391EPSS
Exploits1References1
Prion
Prion
added 2013/10/10 12:55 a.m.10 views

Default configuration

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS7.2AI score0.06391EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2013/10/10 12:55 a.m.20 views

CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS5.9AI score0.06391EPSS
Exploits1References1
OSV
OSV
added 2013/10/10 12:55 a.m.1 views

UBUNTU-CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS5.8AI score0.06391EPSS
Exploits1References2
EUVD
EUVD
added 2013/10/10 12:0 a.m.3 views

EUVD-2013-4228

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS6.3AI score0.06391EPSS
Exploits1References9
Cvelist
Cvelist
added 2013/10/10 12:0 a.m.23 views

CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

9.5AI score0.06391EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2013/10/10 12:0 a.m.28 views

CVE-2013-4342

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service...

7.6CVSS5.6AI score0.06391EPSS
Exploits1
CVE
CVE
added 2013/10/10 12:0 a.m.100 views

CVE-2013-4342

CVE-2013-4342 affects the xinetd service. The root cause is that TCPMUX services can run with root privileges because user/group directives are not enforced, enabling privilege escalation if a vulnerable service is exploited. Connected advisories note specific package versions: Mariner entries in...

7.6CVSS9.3AI score0.06391EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/10/10 12:0 a.m.20 views

Scientific Linux Security Update : xinetd on SL5.x, SL6.x i386/x86_64 (20131007)

It was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote attacker could use it to execute arbitrary code with the...

7.6CVSS5.5AI score0.06391EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/10/10 12:0 a.m.20 views

Scientific Linux Security Update : xinetd on SL5.x i386/x86_64 (20130930)

When xinetd services are configured with the 'TCPMUX' or 'TCPMUXPLUS' type, and the tcpmux-server service is enabled, those services are accessible via port 1. It was found that enabling the tcpmux-server service it is disabled by default allowed every xinetd service, including those that are not...

4.3CVSS5.5AI score0.02779EPSS
Exploits1References2
Mageia
Mageia
added 2013/10/09 10:47 p.m.27 views

Updated xinetd package fixes security vulnerability

It was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote attacker could use it to execute arbitrary code with the...

7.6CVSS5.3AI score0.06391EPSS
Exploits1References2
OSV
OSV
added 2013/10/09 10:47 p.m.4 views

MGASA-2013-0302 Updated xinetd package fixes security vulnerability

It was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote attacker could use it to execute arbitrary code with the...

7.6CVSS7AI score0.06391EPSS
Exploits1References3
Rows per page
Query Builder