Lucene search
K

17 matches found

seebug.org
seebug.org
added 2010/02/19 12:0 a.m.48 views

gitWeb v1.5.2 Remote Command Execution

No description provided by source. Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command...

7.5CVSS0.2AI score0.1188EPSS
Exploits6
Packet Storm
Packet Storm
added 2010/02/19 12:0 a.m.36 views

gitWeb 1.x Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.X Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code:...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
exploitpack
exploitpack
added 2010/02/18 12:0 a.m.44 views

gitWeb 1.5.2 - Remote Command Execution

gitWeb 1.5.2 - Remote Command Execution Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
Exploit DB
Exploit DB
added 2010/02/18 12:0 a.m.53 views

gitWeb 1.5.2 - Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command execution ; Vulnerable functions in...

7.5CVSS7AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.32 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : git-core vulnerabilities (USN-723-1)

It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2008-3546 It was discovered that t...

7.5CVSS6.2AI score0.1188EPSS
Exploits7References5
OpenVAS
OpenVAS
added 2009/03/13 12:0 a.m.37 views

Gentoo Security Advisory GLSA 200903-15 (git)

The remote host is missing updates announced in advisory GLSA 200903-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.8AI score0.1188EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2009/03/09 12:0 a.m.49 views

git: Multiple vulnerabilties

Background GIT - the stupid content tracker, the revision control system used by the Linux kernel team. Description Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell...

7.5CVSS7.6AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/02/23 12:0 a.m.29 views

Slackware 12.0 / 12.1 / 12.2 / current : git (SSA:2009-051-02)

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2009-051-02. The text itself is copyright...

7.5CVSS6.6AI score0.1188EPSS
Exploits7References4
Slackware Linux
Slackware Linux
added 2009/02/20 5:6 p.m.39 views

git

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-3546 There are other security issues related to gitweb, which...

7.5CVSS6.7AI score0.1188EPSS
Exploits7
Ubuntu
Ubuntu
added 2009/02/18 6:59 p.m.63 views

USN-723-1: Git vulnerabilities

It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2008-3546 It was discovered that t...

7.5CVSS6AI score0.1188EPSS
Exploits7
OpenVAS
OpenVAS
added 2009/01/20 12:0 a.m.23 views

Debian Security Advisory DSA 1708-1 (git-core)

The remote host is missing an update to git-core announced via advisory DSA 1708-1. OpenVAS Vulnerability Test $Id: deb17081.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1708-1 git-core Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

7.5CVSS0.4AI score0.1188EPSS
Exploits6
OpenVAS
OpenVAS
added 2009/01/20 12:0 a.m.29 views

SuSE Security Summary SUSE-SR:2009:001 (OpenSuSE 10.3)

The remote host is missing updates announced in advisory SUSE-SR:2009:001. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

10CVSS1.4AI score0.21024EPSS
Exploits24
Tenable Nessus
Tenable Nessus
added 2009/01/20 12:0 a.m.45 views

Debian DSA-1708-1 : git-core - shell command injection

It was discovered that gitweb, the web interface for the Git version control system, contained several vulnerabilities : Remote attackers could use crafted requests to execute shell commands on the web server, using the snapshot generation and pickaxe search functionality CVE-2008-5916 . Local...

7.5CVSS5.8AI score0.1188EPSS
Exploits6References9
OSV
OSV
added 2009/01/19 12:0 a.m.18 views

DSA-1708-1 git-core - remote code execution

Bulletin has no description...

7.5CVSS5.9AI score0.1188EPSS
Exploits6
Cvelist
Cvelist
added 2009/01/13 4:0 p.m.41 views

CVE-2008-5517

The web interface in git gitweb 1.5.x before 1.5.6 allows remote attackers to execute arbitrary commands via shell metacharacters related to 1 gitsnapshot and 2 gitobject...

7.3AI score0.1188EPSS
Exploits6References17
CVE
CVE
added 2009/01/13 4:0 p.m.75 views

CVE-2008-5517

CVE-2008-5517 affects the Git web interface (gitweb) 1.5.x up to 1.5.5, where gitweb.cgi fails to sanitize input and can pass shell metacharacters to a shell via git_snapshot/git_object, enabling remote command execution. Connected advisories (Ubuntu USN-723-1, Slackware SSA-2009-051-02, OpenVAS ...

7.5CVSS7.5AI score0.1188EPSS
Exploits6References17Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/01/11 12:0 a.m.29 views

openSUSE 10 Security Update : git (git-5892)

Insufficient quoting of shell characters allowed remote attackers to execute arbitrary commands via the git web interface CVE-2008-5517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update git-5892...

7.5CVSS5.6AI score0.1188EPSS
Exploits6References1
Rows per page
Query Builder