Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2009-5080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier d...

3.3CVSS6.5AI score0.00357EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.25 views

RHEL 5 : groff (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - groff: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph...

3.3CVSS6.5AI score0.00357EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/12/27 12:0 a.m.54 views

NewStart CGSL MAIN 5.04 : groff Multiple Vulnerabilities (NS-SA-2023-0067)

The remote NewStart CGSL host, running version MAIN 5.04, has groff packages installed that are affected by multiple vulnerabilities: - contrib/pdfmark/pdfroff.sh in GNU troff aka groff before 1.21 allows local users to overwrite arbitrary files via a symlink attack on a pdf.tmp temporary file...

3.3CVSS6.8AI score0.00377EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2012/08/30 12:0 a.m.22 views

Fedora Update for groff FEDORA-2012-8577

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

3.3CVSS6.5AI score0.00373EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/06/08 12:0 a.m.28 views

Fedora Update for groff FEDORA-2012-8596

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

3.3CVSS6.5AI score0.00373EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/06/08 12:0 a.m.24 views

Fedora Update for groff FEDORA-2012-8590

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

3.3CVSS6.5AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/06/08 12:0 a.m.43 views

Fedora 15 : groff-1.21-4.fc15 (2012-8590)

older security fixes : - CVE-2009-5044: insecure temporary file handling in pdfroff - CVE-2009-5080: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph - CVE-2009-5081: roff2.pl and groffer.pl use easy-to-guess temporary file names Note that...

3.3CVSS6.6AI score0.00373EPSS
Exploits0References7
OSV
OSV
added 2011/06/30 3:55 p.m.11 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

6AI score
Exploits0References6
OSV
OSV
added 2011/06/30 3:55 p.m.1 views

DEBIAN-CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.2AI score0.00357EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.24 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.7AI score0.00357EPSS
Exploits0References1
CVE
CVE
added 2011/06/30 3:26 p.m.110 views

CVE-2009-5080

CVE-2009-5080 affects GNU troff (groff) 1.21 and earlier, due to improper handling of failed temporary-directory creation in the eqn2graph/ grap2graph/ pic2graph scripts, enabling local symlink attacks to overwrite files. Connected sources confirm the vulnerable components are eqn2graph/eqn2graph...

3.3CVSS6AI score0.00357EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2011/06/30 3:26 p.m.24 views

CVE-2009-5080

The 1 contrib/eqn2graph/eqn2graph.sh, 2 contrib/grap2graph/grap2graph.sh, and 3 contrib/pic2graph/pic2graph.sh scripts in GNU troff aka groff 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files...

3.3CVSS6.2AI score0.00357EPSS
Exploits0
Rows per page
Query Builder