Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.24 views

Fedora Update for scponly FEDORA-2008-1743

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

8.5CVSS6.7AI score0.04362EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.20 views

Fedora Update for scponly FEDORA-2008-1728

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

8.5CVSS6.7AI score0.04362EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.21 views

Gentoo Security Advisory GLSA 200802-06 (scponly)

The remote host is missing updates announced in advisory GLSA 200802-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

8.5CVSS0.8AI score0.04362EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/31 12:0 a.m.24 views

Debian Security Advisory DSA 1473-1 (scponly)

The remote host is missing an update to scponly announced via advisory DSA 1473-1. OpenVAS Vulnerability Test $Id: deb14731.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1473-1 scponly Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

8.5CVSS1.1AI score0.04362EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/31 12:0 a.m.16 views

Debian: Security Advisory (DSA-1473-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS6.7AI score0.04362EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2008/01/27 12:0 a.m.29 views

Debian DSA-1473-1 : scponly - design flaw

Joachim Breitner discovered that Subversion support in scponly is inherently insecure, allowing execution of arbitrary commands. Further investigation showed that rsync and Unison support suffer from similar issues. This set of issues has been assigned CVE-2007-6350. In addition, it was discovere...

8.5CVSS5.6AI score0.04362EPSS
Exploits1References6
securityvulns
securityvulns
added 2008/01/22 12:0 a.m.49 views

[SECURITY] [DSA 1473-1] New scponly packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1473 [email protected] http://www.debian.org/security/ Florian Weimer January 21, 2008 http://www.debian.org/security/faq -...

8.5CVSS0.9AI score0.04362EPSS
Exploits1
Debian
Debian
added 2008/01/21 7:33 p.m.35 views

[SECURITY] [DSA 1473-1] New scponly packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1473 [email protected] http://www.debian.org/security/ Florian Weimer January 21, 2008 http://www.debian.org/security/faq -...

8.5CVSS6.8AI score0.04362EPSS
Exploits1
OSV
OSV
added 2008/01/21 12:0 a.m.22 views

DSA-1473-1 scponly - arbitrary code execution

Bulletin has no description...

8.5CVSS6AI score0.04362EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2007/12/14 8:46 p.m.22 views

CVE-2007-6350

scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous subcommands including 1 unison, 2 rsync, 3 svn, and 4 svnserve, as originally demonstrated by creating a Subversion SVN repository with malicious hooks, then using svn ...

8.5CVSS6.3AI score0.04362EPSS
Exploits0References1
CVE
CVE
added 2007/12/14 8:0 p.m.56 views

CVE-2007-6350

CVE-2007-6350 affects scponly 4.6 and earlier, where remote authenticated users could bypass restrictions and execute code by abusing certain subcommands (unison, rsync, svn, svnserve) via a malicious SVN repository and hooks to trigger execution. Public references show Fedora advisories (2008-17...

8.5CVSS6.5AI score0.04362EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder