Lucene search
K

17 matches found

seebug.org
seebug.org
added 2010/02/19 12:0 a.m.48 views

gitWeb v1.5.2 Remote Command Execution

No description provided by source. Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command...

7.5CVSS0.2AI score0.1188EPSS
Exploits6
Packet Storm
Packet Storm
added 2010/02/19 12:0 a.m.36 views

gitWeb 1.x Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.X Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code:...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
exploitpack
exploitpack
added 2010/02/18 12:0 a.m.45 views

gitWeb 1.5.2 - Remote Command Execution

gitWeb 1.5.2 - Remote Command Execution Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
Exploit DB
Exploit DB
added 2010/02/18 12:0 a.m.53 views

gitWeb 1.5.2 - Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command execution ; Vulnerable functions in...

7.5CVSS7AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.32 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : git-core vulnerabilities (USN-723-1)

It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2008-3546 It was discovered that t...

7.5CVSS6.2AI score0.1188EPSS
Exploits7References5
OpenVAS
OpenVAS
added 2009/03/13 12:0 a.m.38 views

Gentoo Security Advisory GLSA 200903-15 (git)

The remote host is missing updates announced in advisory GLSA 200903-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.8AI score0.1188EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2009/03/09 12:0 a.m.49 views

git: Multiple vulnerabilties

Background GIT - the stupid content tracker, the revision control system used by the Linux kernel team. Description Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell...

7.5CVSS7.6AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/02/23 12:0 a.m.29 views

Slackware 12.0 / 12.1 / 12.2 / current : git (SSA:2009-051-02)

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2009-051-02. The text itself is copyright...

7.5CVSS6.6AI score0.1188EPSS
Exploits7References4
Slackware Linux
Slackware Linux
added 2009/02/20 5:6 p.m.39 views

git

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-3546 There are other security issues related to gitweb, which...

7.5CVSS6.7AI score0.1188EPSS
Exploits7
Ubuntu
Ubuntu
added 2009/02/18 6:59 p.m.63 views

USN-723-1: Git vulnerabilities

It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2008-3546 It was discovered that t...

7.5CVSS6AI score0.1188EPSS
Exploits7
OpenVAS
OpenVAS
added 2009/01/20 12:0 a.m.29 views

SuSE Security Summary SUSE-SR:2009:001 (OpenSuSE 10.3)

The remote host is missing updates announced in advisory SUSE-SR:2009:001. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

10CVSS1.4AI score0.21024EPSS
Exploits24
OpenVAS
OpenVAS
added 2009/01/20 12:0 a.m.24 views

Debian Security Advisory DSA 1708-1 (git-core)

The remote host is missing an update to git-core announced via advisory DSA 1708-1. OpenVAS Vulnerability Test $Id: deb17081.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1708-1 git-core Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

7.5CVSS0.4AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/01/20 12:0 a.m.45 views

Debian DSA-1708-1 : git-core - shell command injection

It was discovered that gitweb, the web interface for the Git version control system, contained several vulnerabilities : Remote attackers could use crafted requests to execute shell commands on the web server, using the snapshot generation and pickaxe search functionality CVE-2008-5916 . Local...

7.5CVSS5.8AI score0.1188EPSS
Exploits6References9
OSV
OSV
added 2009/01/19 12:0 a.m.19 views

DSA-1708-1 git-core - remote code execution

Bulletin has no description...

7.5CVSS5.9AI score0.1188EPSS
Exploits6
CVE
CVE
added 2009/01/13 4:0 p.m.75 views

CVE-2008-5517

CVE-2008-5517 affects the Git web interface (gitweb) 1.5.x up to 1.5.5, where gitweb.cgi fails to sanitize input and can pass shell metacharacters to a shell via git_snapshot/git_object, enabling remote command execution. Connected advisories (Ubuntu USN-723-1, Slackware SSA-2009-051-02, OpenVAS ...

7.5CVSS7.5AI score0.1188EPSS
Exploits6References17Affected Software1
Cvelist
Cvelist
added 2009/01/13 4:0 p.m.42 views

CVE-2008-5517

The web interface in git gitweb 1.5.x before 1.5.6 allows remote attackers to execute arbitrary commands via shell metacharacters related to 1 gitsnapshot and 2 gitobject...

7.3AI score0.1188EPSS
Exploits6References17
Tenable Nessus
Tenable Nessus
added 2009/01/11 12:0 a.m.29 views

openSUSE 10 Security Update : git (git-5892)

Insufficient quoting of shell characters allowed remote attackers to execute arbitrary commands via the git web interface CVE-2008-5517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update git-5892...

7.5CVSS5.6AI score0.1188EPSS
Exploits6References1
Rows per page
Query Builder