CVE-2019-9705

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service memory consumption via a large crontab file because an unlimited number of lines is accepted...

CVE-2019-9705

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service memory consumption via a large crontab file because an unlimited number of lines is accepted...

CVE-2019-9704

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service daemon crash via a large crontab file because the calloc return value is not checked...

Vixie cron denial of service vulnerability

Vixie cron is a full-featured cron implementation based on SysV cron. cron is a daemon that runs scheduled tasks based on input from the command crontab. A denial of service vulnerability exists in previous versions of the Vixie Cron 3.0pl1-133 Debian package. The vulnerability stems from not...

Vixie cron denial of service vulnerability (CNVD-2019-13244)

Vixie cron is a full-featured cron implementation based on SysV cron. cron is a daemon that runs scheduled tasks based on input from the command crontab. A denial of service vulnerability exists in previous versions of the Vixie Cron 3.0pl1-133 Debian package. The vulnerability stems from accepti...

CVE-2019-9705

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service memory consumption via a large crontab file because an unlimited number of lines is accepted...

CVE-2019-9705

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service memory consumption via a large crontab file because an unlimited number of lines is accepted...

openSUSE: Security Advisory for salt (openSUSE-SU-2018:4197-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for salt (openSUSE-SU-2018:4197-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for salt (moderate)

This update for salt fixes the following issues: - Crontab module fix: file attributes option missing boo1114824 - Fix gitpillar merging across multiple env repositories boo1112874 - Bugfix: unable to detect os arch when RPM is not installed boo1114197 - Fix LDAP authentication issue when a valid...

openSUSE Security Update : salt (openSUSE-2018-1569)

This update for salt fixes the following issues : Security issues fixed : - CVE-2018-15750: Fixed directory traversal vulnerability in salt-api bsc1113698. - CVE-2018-15751: Fixed remote authentication bypass in salt-apinetapi that allows to execute arbitrary commands bsc1113699. Non-security...

openSUSE: Security Advisory for salt (openSUSE-SU-2018:4174-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-1000864

CVE-2018-1000864 describes a denial-of-service vulnerability in Jenkins, affecting version 2.153 and earlier (and LTS 2.138.3 and earlier). The issue is in CronTab.java, where an attacker with Overall/Read permission can cause a request-handling thread to enter an infinite loop, per multiple sour...

jiacrontab command execution vulnerability

jiacrontab is a timed task management tool with visualization support. A security vulnerability exists in the crontab/task/edit?addr=localhost%3a2000 page in jiacrontab version 1.4.5. A remote attacker can exploit this vulnerability to execute arbitrary commands with the help of 'command' and...

Command injection

jiacrontab 1.4.5 allows remote attackers to execute arbitrary commands via the crontab/task/edit?addr=localhost%3a20001 command and args parameters, as demonstrated by command=cat&args=/etc/passwd in the POST data...

CVE-2018-19793

jiacrontab 1.4.5 allows remote attackers to execute arbitrary commands via the crontab/task/edit?addr=localhost%3a20001 command and args parameters, as demonstrated by command=cat&args=/etc/passwd in the POST data...

Xorg X11 Server SUID Privilege Escalation Exploit

This Metasploit module attempts to gain root privileges with SUID Xorg X11 server versions 1.19.0 up to 1.20.3. A permission check flaw exists for -modulepath and -logfile options when starting Xorg. This allows unprivileged users that can start the server the ability to elevate privileges and ru...

Xorg X11 Server - SUID privilege escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xorg X11 Server SUID privilege escalation', 'Description' = %q This module attempts to gain root privileges with SUID Xorg X11 server versions...

Xorg X11 Server SUID Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xorg X11 Server SUID privilege escalation', 'Description' = %q This module attempts to gain root privileges with SUID Xorg X11 server versions...

xorg-x11-server < 1.20.1 - Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits Exploit Title: xorg-x11-server bolo console opened Building root shell wait 2 minutes crontab overwritten ... cut Xorg output ... Xorg killed II Server terminated successfully 0. Closing log file. Don't forget to cleanup /etc/crontab and /tmp...