Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.22 views

openSUSE Security Update : jhead (jhead-399)

This update of jhead fixes several security problems : - CVE-2008-4575: buffer overflow in DoCommand - CVE-2008-4639: local symlink attack - CVE-2008-4640: DoCommand allowed deletion of arbitrary files - CVE-2008-4641: execution of arbitrary shell commands in DoCommand %NASLMINLEVEL 70300 C Tenab...

10CVSS6AI score0.02197EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.17 views

Mandriva Linux Security Advisory : jhead (MDVSA-2009:041)

Security vulnerabilities have been identified and fixed in jhead. Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service crash CVE-2008-4575. Jhead before 2.84 allows local users to overwrite arbitrary files via a symlin...

10CVSS5.8AI score0.02197EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.22 views

Fedora 10 : jhead-2.86-1.fc10 (2009-1824)

fixes 'CVE-2008-4640 jhead: arbitrary file deletion' 468056 fixes 'CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes' 468057 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

10CVSS5.6AI score0.02197EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2009/03/07 12:0 a.m.21 views

Fedora Core 10 FEDORA-2009-1824 (jhead)

The remote host is missing an update to jhead announced via advisory FEDORA-2009-1824. OpenVAS Vulnerability Test $Id: fcore20091824.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1824 jhead Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

10CVSS1.5AI score0.02197EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/07 12:0 a.m.17 views

Fedora Core 9 FEDORA-2009-1776 (jhead)

The remote host is missing an update to jhead announced via advisory FEDORA-2009-1776. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

10CVSS6.3AI score0.02197EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/03/07 12:0 a.m.24 views

Fedora Core 9 FEDORA-2009-1776 (jhead)

The remote host is missing an update to jhead announced via advisory FEDORA-2009-1776. OpenVAS Vulnerability Test $Id: fcore20091776.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1776 jhead Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

10CVSS1.5AI score0.02197EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/03/06 12:0 a.m.21 views

Fedora 9 : jhead-2.86-1.fc9 (2009-1776)

fixes 'CVE-2008-4640 jhead: arbitrary file deletion' 468056 fixes 'CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes' 468057 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

10CVSS5.6AI score0.02197EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2009/02/18 12:0 a.m.15 views

Mandrake Security Advisory MDVSA-2009:041 (jhead)

The remote host is missing an update to jhead announced via advisory MDVSA-2009:041. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

10CVSS6.3AI score0.02197EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/02/18 12:0 a.m.15 views

Mandrake Security Advisory MDVSA-2009:041 (jhead)

The remote host is missing an update to jhead announced via advisory MDVSA-2009:041. OpenVAS Vulnerability Test $Id: mdksa2009041.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:041 jhead Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS1.2AI score0.02197EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/01/20 12:0 a.m.29 views

SuSE Security Summary SUSE-SR:2009:001 (OpenSuSE 10.3)

The remote host is missing updates announced in advisory SUSE-SR:2009:001. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

10CVSS1.4AI score0.21024EPSS
Exploits24
Tenable Nessus
Tenable Nessus
added 2009/01/11 12:0 a.m.22 views

openSUSE 10 Security Update : jhead (jhead-5899)

This update of jhead fixes several security problems : - CVE-2008-4575: buffer overflow in DoCommand - CVE-2008-4639: local symlink attack - CVE-2008-4640: DoCommand allowed deletion of arbitrary files - CVE-2008-4641: execution of arbitrary shell commands in DoCommand %NASLMINLEVEL 70300 C Tenab...

10CVSS6AI score0.02197EPSS
Exploits1References4
NVD
NVD
added 2008/10/21 6:0 p.m.11 views

CVE-2008-4640

The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which 1 a final "z" character is replaced by a "t" character or 2 a final "t" character is replaced by a "z" character...

3.6CVSS6.1AI score0.00302EPSS
Exploits0References4
OSV
OSV
added 2008/10/21 6:0 p.m.6 views

CVE-2008-4640

The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which 1 a final "z" character is replaced by a "t" character or 2 a final "t" character is replaced by a "z" character...

6.4AI score
Exploits0References4
Cvelist
Cvelist
added 2008/10/21 4:0 p.m.17 views

CVE-2008-4640

The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which 1 a final "z" character is replaced by a "t" character or 2 a final "t" character is replaced by a "z" character...

6AI score0.00302EPSS
Exploits0References4
CVE
CVE
added 2008/10/21 4:0 p.m.65 views

CVE-2008-4640

The CVE-2008-4640 issue affects jhead up to version 2.84, where DoCommand() could delete arbitrary files when the input filename is manipulated (replacing a trailing z with t or vice versa). Several advisories (openSUSE/SUSE jhead-399, Fedora 2009-1824/1776, Mandriva MDVSA-2009:041) confirm the v...

3.6CVSS6AI score0.00302EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2008/10/21 4:0 p.m.18 views

CVE-2008-4640

The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which 1 a final "z" character is replaced by a "t" character or 2 a final "t" character is replaced by a "z" character...

3.6CVSS6.1AI score0.00302EPSS
Exploits0
Rows per page
Query Builder