Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.12 views

Ubuntu: Security Advisory (USN-778-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.7AI score0.00565EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.22 views

openSUSE 10 Security Update : cron (cron-1440)

A missing check on the return value of setuid in vixie-cron could be used by a local user to gain root privileges by exhausting resource limits and waiting for a cronjob to trigger. This is tracked by the Mitre CVE ID CVE-2006-2607. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

7.2CVSS5.4AI score0.00565EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2006/07/12 6:13 p.m.28 views

Important: Red Hat Security Advisory: vixie-cron security update

Updated vixie-cron packages that fix a privilege escalation issue are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The vixie-cron package contains the Vixie version of cron. Cron is a standard UNIX daemon that runs specified...

7.2CVSS6AI score0.00565EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2006/05/25 8:2 p.m.28 views

CVE-2006-2607

docommand.c in Vixie cron vixie-cron 4.1 does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits, as originally demonstrated by a program that exceeds the process limits as defined in...

7.2CVSS5.9AI score0.00565EPSS
Exploits1References2
CVE
CVE
added 2006/05/25 8:0 p.m.72 views

CVE-2006-2607

CVE-2006-2607 refers to a local privilege escalation in vixie-cron 4.1 where do_command.c does not check the return value of setuid(), potentially allowing a root gain if setuid() fails (e.g., PAM limits or resource limits). Connected advisories confirm this vulnerability and document patches/ups...

7.2CVSS6.3AI score0.00565EPSS
Exploits1References19Affected Software1
Rows per page
Query Builder