Lucene search
K

65 matches found

UbuntuCve
UbuntuCve
added 2016/09/07 7:28 p.m.24 views

CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.8CVSS6.9AI score0.00747EPSS
Exploits0References2
OSV
OSV
added 2016/09/07 7:28 p.m.1 views

UBUNTU-CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.8CVSS6.9AI score0.00747EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/09/07 7:0 p.m.34 views

CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.6AI score0.00747EPSS
Exploits0References7
CVE
CVE
added 2016/09/07 7:0 p.m.235 views

CVE-2016-6318

CVE-2016-6318 is a stack-based buffer overflow in cracklib’s FascistGecosUser (lib/fascist.c) that can be triggered by parsing an overly long GECOS field, allowing a local attacker to crash the application or gain privileges. Multiple connected sources confirm the issue and reference the same roo...

7.8CVSS7.5AI score0.00747EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2016/09/07 7:0 p.m.57 views

CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.8CVSS6.2AI score0.00747EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/09/07 7:0 p.m.75 views

CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.8CVSS7.7AI score0.00747EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/09/06 12:0 a.m.28 views

SUSE SLES11 Security Update : cracklib (SUSE-SU-2016:2211-1)

This update for cracklib fixes a security issue and a bug: Security issue fixed : - Add patch to fix a stack-based buffer overflow in GECOS parser bsc992966 CVE-2016-6318 The following non security issue was fixed : - Call textdomain in cracklib-check main function so that program output is...

7.8CVSS7.1AI score0.00747EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.22 views

SUSE SLED12 / SLES12 Security Update : cracklib (SUSE-SU-2016:2107-1)

This update for cracklib fixes the following issues : - Add patch to fix a buffer overflow in GECOS parser bsc992966 CVE-2016-6318 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clea...

7.8CVSS6.9AI score0.00747EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/09/01 12:0 a.m.15 views

openSUSE Security Update : cracklib (openSUSE-2016-1041)

This update for cracklib fixes the following issues : - Add patch to fix a buffer overflow in GECOS parser bsc992966 CVE-2016-6318 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

7.8CVSS6.9AI score0.00747EPSS
Exploits0References2
OSV
OSV
added 2016/08/19 10:58 a.m.2 views

SUSE-SU-2016:2107-1 Security update for cracklib

This update for cracklib fixes the following issues: - Add patch to fix a buffer overflow in GECOS parser bsc992966 CVE-2016-6318...

7.8CVSS7.9AI score0.00747EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2016/08/18 9:3 p.m.23 views

CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

7.8CVSS6.5AI score0.00747EPSS
Exploits0References1
CNVD
CNVD
added 2016/08/17 12:0 a.m.34 views

cracklib Local Stack Buffer Overflow Vulnerability

cracklib is a Unix library that can be used to write password-related programs. A local stack buffer overflow vulnerability exists in the implementation of cracklib, which can be successfully exploited to allow an attacker to execute arbitrary code in the context of an application...

7.8CVSS9.7AI score0.00747EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2015/10/30 9:24 a.m.21 views

CVE-2007-1401

Buffer overflow in the crack extension CrackLib, as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crackopendict function...

6.9CVSS7.6AI score0.00744EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2015/10/26 12:0 a.m.3 views

PT-2016-6824 · Cracklib +2 · Cracklib +2

Name of the Vulnerable Software and Affected Versions: cracklib affected versions not specified Description: The issue is related to a stack-based buffer overflow in the FascistGecosUser function, located in lib/fascist.c. This overflow can be triggered by a long GECOS field, which involves a lon...

7.8CVSS6AI score0.00747EPSS
Exploits0References38
OpenVAS
OpenVAS
added 2010/07/12 12:0 a.m.21 views

Ubuntu Update for pam vulnerability USN-959-1

Ubuntu Update for Linux kernel vulnerabilities USN-959-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9591.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for pam vulnerability USN-959-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.n...

6.9CVSS0.4AI score0.00941EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.25 views

MDVA-2008:180 : cracklib

The cracklib library package was incorrectly providing the development package, which was preventing the compilation of anything relying on cracklib-devel. This update fixes the incorrect Provides. It also corrects an issue when /usr is a separate partition the fails to mount at start, logging in...

6.9AI score
Exploits0References1
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.17 views

Mandriva Update for cracklib MDVA-2008:180 (cracklib)

Check for the Version of cracklib OpenVAS Vulnerability Test Mandriva Update for cracklib MDVA-2008:180 cracklib Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

0.3AI score
Exploits0References2
PyPA
PyPA
added 2009/03/30 1:30 a.m.10 views

PYSEC-2009-12

The passwordchecker function in config/multiconfig.py in MoinMoin 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a denial of service segmentation fault and crash via unknown vectors...

5CVSS6.8AI score0.01484EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2007/03/10 10:19 p.m.25 views

CVE-2007-1401

Buffer overflow in the crack extension CrackLib, as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crackopendict function...

6.9CVSS6.8AI score0.00744EPSS
Exploits1References4
Prion
Prion
added 2007/03/10 10:19 p.m.18 views

Buffer overflow

Buffer overflow in the crack extension CrackLib, as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crackopendict function...

6.9CVSS7.2AI score0.00744EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder