Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-1926

Malware in sbrugna...

7.5CVSS6AI score0.03973EPSS
Exploits1References20
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.3 views

SUSE CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS7.2AI score0.03973EPSS
Exploits1References3
OSV
OSV
added 2017/12/12 2:29 p.m.4 views

CVE-2017-16680

Two potential audit log injections in SAP HANA extended application services 1.0, advanced model: 1 Certain HTTP/REST endpoints of controller service are missing user input validation which could allow unprivileged attackers to forge audit log lines. Hence the interpretation of audit log files...

7.5CVSS5.8AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2009/05/18 1:45 p.m.7 views

util-linux: audit log injection via login

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS5.9AI score0.03973EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/01/20 12:0 a.m.5 views

util-linux: audit log injection via login

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS5.9AI score0.03973EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2008/05/01 12:0 a.m.27 views

Fedora 8 : util-linux-ng-2.13.1-2.fc8 (2008-3419)

Tue Apr 22 2008 Karel Zak 2.13.1-2 - fix audit log injection attack via login - Wed Jan 16 2008 Karel Zak 2.13.1-1 - upgrade to stable util-linux-ng 2.13.1 - fix 427874 - util-linux-ng gets 'excess command line argument' on update - Thu Jan 3 2008 Karel Zak 2.13-3.2 - fix 427207 -...

7.5CVSS5.5AI score0.03973EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2008/04/24 5:5 a.m.29 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS5.9AI score0.03973EPSS
Exploits1References1
NVD
NVD
added 2008/04/24 5:5 a.m.16 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS6.7AI score0.03973EPSS
Exploits1References15
OSV
OSV
added 2008/04/24 5:5 a.m.1 views

DEBIAN-CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS7.2AI score0.03973EPSS
Exploits1References1
OSV
OSV
added 2008/04/24 5:5 a.m.6 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

6.6AI score
Exploits0References15
Debian CVE
Debian CVE
added 2008/04/23 5:0 p.m.29 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS5.2AI score0.03973EPSS
Exploits1
Oracle linux
Oracle linux
added 2007/11/19 12:0 a.m.42 views

pam security, bug fix, and enhancement update

0.99.6.2-3.26 - removed realtime default limits 240123 from the package as it caused regression on machines with nonexistent realtime group 0.99.6.2-3.25 - added and improved translations 219124 - adjusted the default limits for realtime users 240123 0.99.6.2-3.23 - pamunix: truncated MD5 passwor...

4.3CVSS0.3AI score0.02342EPSS
Exploits0
Oracle linux
Oracle linux
added 2007/11/19 12:0 a.m.49 views

openssh security and bug fix update

4.3p2-24 - fixed audit log injection problem CVE-2007-3102 248059 4.3p2-23 - document where the nss certificate and token dbs are looked for 4.3p2-22 - experimental support for PKCS11 tokens through libnss3 183423 4.3p2-21 - fix an information leak in Kerberos password authentication CVE-2006-505...

5CVSS1.4AI score0.02801EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2007/11/15 1:24 p.m.5 views

audit logging of failed logins

Unspecified vulnerability in the linuxauditrecordevent function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party informatio...

4.3CVSS6.8AI score0.02342EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/10/16 12:0 a.m.39 views

Fedora Core 6 : openssh-4.3p2-25.fc6 (2007-715)

Tue Oct 2 2007 Tomas Mraz - 4.3p2-25 - do not fall back on trusted X11 cookies CVE-2007-4752 280471 - Fri Jul 13 2007 Tomas Mraz - 4.3p2-24 - fixed audit log injection problem CVE-2007-3102 248059 - Thu Jun 21 2007 Tomas Mraz - 4.3p2-23 - document where the nss certificate and token dbs are...

7.5CVSS6.6AI score0.02374EPSS
Exploits0References3
Rows per page
Query Builder