Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2009/05/20 12:0 a.m.21 views

RedHat Security Advisory RHSA-2009:0981

The remote host is missing updates to util-linux announced in advisory RHSA-2009:0981. A log injection attack was found in util-linux when logging log in attempts via the audit subsystem of the Linux kernel. A remote attacker could use this flaw to modify certain parts of logged events, possibly...

7.5CVSS6.4AI score0.03973EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.23 views

Mandriva Linux Security Advisory : util-linux-ng (MDVSA-2008:114)

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events. The updated packages have been patched to fix the issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

7.5CVSS5.5AI score0.03973EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.22 views

Fedora Update for util-linux-ng FEDORA-2008-3419

Check for the Version of util-linux-ng OpenVAS Vulnerability Test Fedora Update for util-linux-ng FEDORA-2008-3419 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

7.5CVSS6.4AI score0.03973EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2008/04/24 5:5 a.m.29 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

7.5CVSS5.9AI score0.03973EPSS
Exploits1References1
OSV
OSV
added 2008/04/24 5:5 a.m.6 views

CVE-2008-1926

Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...

6.6AI score
Exploits0References15
Rows per page
Query Builder