Lucene search
K

180 matches found

n0where
n0where
added 2018/05/24 6:52 p.m.25 views

Windows Packer Project for Defenders: DARKSURGEON

Darksurgeon is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense. Darksurgeon has three stated goals: Accelerate incident response, digital forensics, malware analysis, and network defense with a preconfigured Windows 10 environment...

Exploits0References1
Fedora
Fedora
added 2016/12/10 2:52 a.m.33 views

[SECURITY] Fedora 23 Update: flex-2.6.0-2.fc23

The flex program generates scanners. Scanners are programs which can recognize lexical patterns in text. Flex takes pairs of regular expressions and C code as input and generates a C source file as output. The output file is compiled and linked with a library to produce an executable. The...

9.8CVSS1.9AI score0.08767EPSS
Exploits0
CVE
CVE
added 2016/06/30 4:0 p.m.61 views

CVE-2016-4474

CVE-2016-4474 affects Red Hat OpenStack Platform 8.0 (Liberty) director and Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) overcloud-full images. The image build process uses a default root password (ROOTPW/rootpw), enabling potential remote root access via unspecified vectors. Red Hat ad...

8.8CVSS8.8AI score0.00846EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/06/30 4:0 p.m.41 views

CVE-2016-4474

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 Liberty director and Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo director aka overcloud-full use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors...

8.9AI score0.00846EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2016/06/13 9:25 p.m.30 views

Important: Red Hat Security Advisory: rhosp-director-images security and bug fix update

Updated deployment images are now available for Red Hat OpenStack Platform 7.0 Kilo director. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

8.8CVSS7.4AI score0.00846EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/06/13 7:30 p.m.35 views

Important: Red Hat Security Advisory: rhosp-director-images security and bug fix update

Updated deployment images are now available for Red Hat OpenStack Platform 8.0 Liberty director. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS7.4AI score0.00846EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2016/06/13 5:18 p.m.29 views

CVE-2016-4474

An issue was discovered in the image build process for the overcloud images, as used by director, resulting in all previous images to have a default root password of "rootpw". Remote root access via SSH is disabled by default...

8.8CVSS3.3AI score0.00846EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2016/05/19 3:48 p.m.33 views

CVE-2016-3738

A vulnerability was found in the STI build process in OpenShift Enterprise. Access to STI builds was not properly restricted, allowing an attacker to use STI builds to access the Docker socket and escalate their privileges...

8.8CVSS4.2AI score0.01941EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/03/11 12:0 a.m.7 views

The vulnerability of the Kubernetes cluster management software allows a hacker to increase their privileges.

The vulnerability of the software interface of the Kubernetes cluster management server is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges by modifying system configuration during the system build process...

10CVSS7.7AI score0.04843EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/02/21 12:0 a.m.23 views

RedHat Update for util-linux RHSA-2012:0307-03

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.6CVSS7.5AI score0.00449EPSS
Exploits0References2
NVD
NVD
added 2010/06/15 2:30 p.m.19 views

CVE-2010-2276

The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remote attackers to have an unspecified impact...

10CVSS6.6AI score0.03153EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2010/06/15 2:30 p.m.24 views

CVE-2010-2276

The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remote attackers to have an unspecified impact...

10CVSS7.2AI score0.03153EPSS
Exploits0References1
Prion
Prion
added 2010/06/15 2:30 p.m.13 views

Default configuration

The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remote attackers to have an unspecified impact...

10CVSS7.1AI score0.03153EPSS
Exploits0References12Affected Software1
CVE
CVE
added 2010/06/14 7:0 p.m.128 views

CVE-2010-2276

CVE-2010-2276 affects Dojo where the default build-process configuration uses copyTests=true and mini=false, enabling remote attackers to cause an unspecified impact via requests to test or demo components. Affected Dojo lines: 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x bef...

10CVSS6.7AI score0.03153EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2010/06/14 7:0 p.m.21 views

CVE-2010-2276

The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remote attackers to have an unspecified impact...

6.5AI score0.03153EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2010/06/14 7:0 p.m.42 views

CVE-2010-2276

The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=true and mini=false options, which makes it easier for remote attackers to have an unspecified impact...

10CVSS9.4AI score0.03153EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/04/09 12:0 a.m.12 views

FreeBSD : dojo -- XSS and other vulnerabilities (805603a1-3e7a-11df-a5a1-0050568452ac)

The Dojo Toolkit team reports : Some PHP files did not properly escape input. Some files could operate like 'open redirects'. A bad actor could form an URL that looks like it came from a trusted site, but the user would be redirected or load content from the bad actor's site. A file exposed a mor...

5.4AI score
Exploits0References5
securityvulns
securityvulns
added 2008/07/22 12:0 a.m.39 views

Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution

Summary Product : Vim -- Vi IMproved Versions : 5.0--current, possibly older; 4.6 and 3.0 not vulnerable Impact : Arbitrary code execution Wherefrom: Local Original : http://www.rdancer.org/vulnerablevim-configure.in.html http://www.rdancer.org/vulnerablevim-configure.in.patch Insecure temporary...

1.3AI score
Exploits0
Prion
Prion
added 2006/06/02 1:2 a.m.18 views

Design/Logic Flaw

The build process for ypserv in FreeBSD 5.3 up to 6.1 accidentally disables access restrictions when using the /var/yp/securenets file, which allows remote attackers to bypass intended access restrictions...

6.4CVSS7.3AI score0.0152EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2004/11/23 5:0 a.m.4 views

DEBIAN-CVE-2004-0256

GNU libtool before 1.5.2, during compile time, allows local users to overwrite arbitrary files via a symlink attack on libtool directories in /tmp...

2.1CVSS6.7AI score0.00348EPSS
Exploits0References1
Rows per page
Query Builder