Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.17 views

openSUSE Security Update : fail2ban (openSUSE-SU-2011:1175-1)

fail2ban IP used insecure temporary files when unbanning an IP address CVE-2009-5023. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update fail2ban-5301. The text description of this plugin is C SU...

4.7CVSS5.3AI score0.0034EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.16 views

openSUSE Security Update : fail2ban (openSUSE-SU-2011:1175-1)

fail2ban IP used insecure temporary files when unbanning an IP address CVE-2009-5023. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update fail2ban-5301. The text description of this plugin is C SU...

4.7CVSS5.3AI score0.0034EPSS
Exploits0References3
OSV
OSV
added 2014/06/10 2:55 p.m.5 views

CVE-2009-5023

The 1 dshield.conf, 2 mail-buffered.conf, 3 mynetwatchman.conf, and 4 mynetwatchman.conf actions in action.d/ in Fail2ban before 0.8.5 allows local users to write to arbitrary files via a symlink attack on temporary files with predictable names, as demonstrated by /tmp/fail2ban-mail.txt...

6.2AI score
Exploits0References4
CVE
CVE
added 2014/06/10 2:0 p.m.48 views

CVE-2009-5023

CVE-2009-5023 affects Fail2ban prior to 0.8.5. A symlink race in temporary files used by actions (notably in action.d/ and the files dshield.conf, mail-buffered.conf, mynetwatchman.conf) allows local users to write to arbitrary files, demonstrated by /tmp/fail2ban-mail.txt. Root cause: predictabl...

4.7CVSS6.3AI score0.0034EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder