CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Judge0 is an open-source online code execution system. The application uses the UNIX chown command on an untrusted file within the sandbox. An attacker can abuse this by creating a symbolic link symlink to a file outside the sandbox, allowing the attacker to run chown on arbitrary files outside o...

10CVSS7.5AI score0.65016EPSS

Exploits3References1

OSV•added 2024/04/18 2:40 p.m.•23 views

CVE-2024-28189 Judge0 vulnerable to Sandbox Escape Patch Bypass via chown running on Symbolic Link

10CVSS8.9AI score0.57578EPSS

Exploits2References6

Positive Technologies•added 2024/04/18 12:0 a.m.•1 views

PT-2024-22322 · Judge0 · Judge0

Name of the Vulnerable Software and Affected Versions: Judge0 versions prior to 1.13.1 Description: The issue arises from the application's use of the UNIX chown command on an untrusted file within the sandbox. An attacker can exploit this by creating a symbolic link symlink to a file outside the...

10CVSS7.5AI score0.57578EPSS

Exploits2References16

IBM Security Bulletins•added 2018/08/01 9:20 p.m.•38 views

Security Bulletin: IBM Spectrum Scale (GPFS) Hadoop connector is affected by a security vulnerability (CVE-2015-7430)

Summary A security vulnerability has been identified in the IBM Spectrum Scale GPFS Hadoop connector which could allow an unprivileged user the ability to read, write, modify, or delete any data in a GPFS file system CVE-2015-7430 Vulnerability Details CVEID: CVE-2015-7430 DESCRIPTION: IBM Genera...

8.4CVSS0.4AI score0.00049EPSS

Exploits0Affected Software1

RubySec•added 2018/06/12 12:0 a.m.•17 views

CHMOD race vulnerability

The file system access race condition allows for local privilege escalation and affects the Nginx module for Passenger versions 5.3.1, all the way back to 3.0.0 the chown command entered the code in 2010. The vulnerability was exploitable only when running a non-standard...

7CVSS7.1AI score0.00099EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2017/11/13 12:0 a.m.•20 views

GLSA-201711-11 : VDE: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201711-11 VDE: Privilege escalation It was discovered that Gentoos default VDE installation suffered from a privilege escalation vulnerability in the init script. This script calls an unsafe chown command which gives members from...

10CVSS8.5AI score0.00248EPSS

Exploits0References2

Gentoo Linux•added 2017/11/12 12:0 a.m.•16 views

VDE: Privilege escalation

Background VDE is an ethernet compliant virtual network that can be spawned over a set of physical computer over the Internet. Description It was discovered that Gentoo’s default VDE installation suffered from a privilege escalation vulnerability in the init script. This script calls an unsafe...

10CVSS9.7AI score0.00248EPSS

Exploits0

Tenable Nessus•added 2017/09/18 12:0 a.m.•29 views

GLSA-201709-11 : GIMPS: Root privilege escalation

The remote host is affected by the vulnerability described in GLSA-201709-11 GIMPS: Root privilege escalation It was discovered that Gentoos default GIMPS installation suffered from a privilege escalation vulnerability in the init script. This script calls an unsafe chown -R command in checkconfi...

7.3CVSS7.4AI score0.0003EPSS

Exploits0References2

NVD•added 2014/08/31 10:55 a.m.•10 views

CVE-2013-6124

The Qualcomm Innovation Center QuIC init scripts in Code Aurora Forum CAF releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a 1 chown or 2 chmod command, as demonstrated by changing the permissions of an arbitrary file via...

3.3CVSS6.4AI score0.00032EPSS

Exploits0References1

Cvelist•added 2014/08/31 10:0 a.m.•14 views

CVE-2013-6124

6.4AI score0.00032EPSS

Exploits0References1

Exploit DB•added 2004/09/26 12:0 a.m.•26 views

freebsd/x86 chown 0:0 , chmod 6755 & execve /tmp/sh 44 bytes

freebsd/x86 chown 0:0 , chmod 6755 & execve /tmp/sh 44 bytes. Shellcode exploit for freebsdx86 platform / FreeBSD shellcode chown"/tmp/sh", 0, 0; chmod"/tmp/sh", 06755; 44 bytes Claes M. Nyberg 20020209 , / / void mainvoid asm" xor %eax, %eax eax = 0 pushl %eax string ends with NULL pushl...

0.1AI score

Exploits0

Tenable Nessus•added 2004/08/20 12:0 a.m.•9 views

bftpd < 1.0.14 chown Command Overflow

Binary data 1828.prm...

10CVSS7.3AI score0.03393EPSS

Exploits2References3

RedHat Linux•added 2003/02/20 6:37 p.m.•19 views

Low: Red Hat Security Advisory: fileutils security update

Updated fileutils packages are available which fix a race condition in recursive remove and move commands. The fileutils package includes a number of GNU versions of common and popular file management utilities. A race condition in recursive use of rm and mv commands in fileutils 4.1 and earlier...

1.2CVSS5.8AI score0.00074EPSS

Exploits0References4

Tenable Nessus•added 2000/12/16 12:0 a.m.•48 views

bftpd Multiple Command Remote Overflow

The version of bftpd running on the remote host is vulnerable to a remote buffer overflow attack when issued very long arguments to the SITE CHOWN command. A remote attacker could exploit this issue to crash the FTP server, or possibly execute arbitrary code. TRUSTED...

10CVSS6.4AI score0.03393EPSS

Exploits2References3