Lucene search
K

46 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-2200

Malware in sbrugna...

6.2CVSS6.4AI score0.00268EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6622

Malware in sbrugna...

4.6CVSS6.3AI score0.00283EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6668

Malware in sbrugna...

7.2CVSS6.4AI score0.00402EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-6663

Malware in sbrugna...

4.6CVSS6.4AI score0.00289EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6664

Malware in sbrugna...

7.5CVSS6.4AI score0.01402EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-2198

Malware in sbrugna...

7.5CVSS6.4AI score0.06043EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-2199

Malware in sbrugna...

6.2CVSS6.4AI score0.00249EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/21 8:35 p.m.6 views

CVE-2002-2220

Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when configured for access from 0.0.0.0, allows local users to gain privileges via unspecified vectors...

6.2CVSS7.3AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:5 p.m.5 views

CVE-2006-6685

Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long REMOTEADDR environment variable. NOTE: The provenance of this information is unknown; the details are obtained solely...

7.2CVSS8AI score0.00402EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:4 p.m.6 views

CVE-2006-6683

Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates user accounts via custom code that processes /etc/shadow and does not follow the PAM configuration, which might allow remote attackers to bypass intended restrictions implemented through PAM...

7.8CVSS7.3AI score0.0132EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:1 p.m.9 views

CVE-2006-6639

Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local users to gain privileges via unspecified vectors related to executing 1 the cp program, 2 the mail program, or 3 the program specified in the postchange configuration line...

4.6CVSS7.1AI score0.00283EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2015/03/26 12:0 a.m.2 views

CHETCPASSWD System Shadow File Disclosure - Ver2 (CVE-2002-2219)

An information disclosure vulnerability has been reported in CHETCPASSWD. The vulnerability may potentially cause the tail end of the local shadow file to be disclosed to a remote attacker...

7.5CVSS2.6AI score0.06043EPSS
Exploits1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

CHETCPASSWD 1.12 Shadow File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6472/info CHETCPASSWD is prone to a vulnerability that may potentially cause the tail end of the local shadow file to be disclosed to a remote attacker. It is possible to exploit this issue by sending an overly long strin...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/21 7:28 p.m.15 views

CVE-2006-6684

Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long X-Forwarded-For HTTP header. NOTE: The provenance of this information is unknown; the details are obtained...

7.5CVSS8.1AI score0.02872EPSS
Exploits0References3
NVD
NVD
added 2006/12/21 7:28 p.m.11 views

CVE-2006-6682

Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message when a request with a valid username fails, compared to a request with an invalid username, which allows remote attackers to determine valid usernames on the system...

5CVSS6.7AI score0.01881EPSS
Exploits0References6
NVD
NVD
added 2006/12/21 7:28 p.m.15 views

CVE-2006-6683

Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates user accounts via custom code that processes /etc/shadow and does not follow the PAM configuration, which might allow remote attackers to bypass intended restrictions implemented through PAM...

7.8CVSS6.9AI score0.0132EPSS
Exploits0References2
NVD
NVD
added 2006/12/21 7:28 p.m.16 views

CVE-2006-6685

Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long REMOTEADDR environment variable. NOTE: The provenance of this information is unknown; the details are obtained solely...

7.2CVSS7.6AI score0.00402EPSS
Exploits0References1
NVD
NVD
added 2006/12/21 7:28 p.m.18 views

CVE-2006-6680

Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need for 0400 permissions on /etc/chetcpasswd.allow, which might allow local users to gain sensitive information by reading this file...

4.6CVSS6.1AI score0.00289EPSS
Exploits0References1
NVD
NVD
added 2006/12/21 7:28 p.m.15 views

CVE-2006-6679

Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For HTTP header when verifying a client's status on an IP address ACL, which allows remote attackers to gain unauthorized access by spoofing this header...

7.5CVSS7.6AI score0.02067EPSS
Exploits0References7
CVE
CVE
added 2006/12/21 7:0 p.m.37 views

CVE-2006-6684

The CVE-2006-6684 entry relates to a heap-based buffer overflow in Pedro Lineu Orso chetcpasswd prior to version 2.4. The vulnerability can be triggered by a long X-Forwarded-For HTTP header, allowing remote attackers to cause an application crash and, per the description, possibly execute arbitr...

7.5CVSS8.4AI score0.02872EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder