Lucene search
K

42 matches found

Exploit DB
Exploit DB
added 2019/04/19 12:0 a.m.38 views

SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SystemTap MODPROBEOPTIONS Privilege Escalation', 'Description' = %q This module attempts to gain root privileges by exploiting a vulnerability in...

7.2CVSS6.3AI score0.04797EPSS
Exploits10
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.21 views

Oracle: Security Advisory (ELSA-2010-0894)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.4AI score0.04797EPSS
Exploits10References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

systemtap - Local Root Privilege Escalation Vulnerability

No description provided by source. CVE-2010-4170 printf install uprobes /bin/sh exploit.conf; MODPROBEOPTIONS=-C exploit.conf staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...

7.2CVSS1.2AI score0.04797EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.24 views

Oracle Linux 5 / 6 : systemtap (ELSA-2010-0894)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0894 advisory. - CVE-2010-4170 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

7.2CVSS5.6AI score0.04797EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.23 views

Oracle Linux 4 : systemtap (ELSA-2010-0895)

From Red Hat Security Advisory 2010:0895 : Updated systemtap packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...

7.2CVSS5.5AI score0.04797EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.27 views

Scientific Linux Security Update : systemtap on SL4.x i386/x86_64

It was discovered that staprun did not properly sanitize the environment before executing the modprobe command to load an additional kernel module. A local, unprivileged user could use this flaw to escalate their privileges. CVE-2010-4170 Note: On Scientific Linux 4, an attacker must be a member ...

7.2CVSS5.4AI score0.04797EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.21 views

Debian Security Advisory DSA 2348-1 (systemtap)

The remote host is missing an update to systemtap announced via advisory DSA 2348-1. OpenVAS Vulnerability Test $Id: deb23481.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2348-1 systemtap Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

7.2CVSS0.2AI score0.04797EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2011/11/22 12:0 a.m.33 views

Debian DSA-2348-1 : systemtap - several vulnerabilities

Several vulnerabilities were discovered in SystemTap, an instrumentation system for Linux : - CVE-2011-2503 It was discovered that a race condition in staprun could lead to privilege escalation. - CVE-2010-4170 It was discovered that insufficient validation of environment variables in staprun cou...

7.2CVSS5.4AI score0.04797EPSS
Exploits10References8
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.24 views

CentOS Update for systemtap CESA-2010:0894 centos5 i386

Check for the Version of systemtap OpenVAS Vulnerability Test CentOS Update for systemtap CESA-2010:0894 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

7.2CVSS6.3AI score0.04797EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.20 views

CentOS Update for systemtap CESA-2010:0894 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS5.2AI score0.04797EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2011/06/03 12:0 a.m.18 views

Fedora Update for systemtap FEDORA-2011-7289

Check for the Version of systemtap OpenVAS Vulnerability Test Fedora Update for systemtap FEDORA-2011-7289 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

7.2CVSS6.5AI score0.04797EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2011/06/03 12:0 a.m.19 views

Fedora Update for systemtap FEDORA-2011-7289

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.7AI score0.04797EPSS
Exploits10References2
OSV
OSV
added 2010/12/07 10:0 p.m.7 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

6.1AI score
Exploits0References19
UbuntuCve
UbuntuCve
added 2010/12/07 10:0 p.m.31 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS5.9AI score0.04797EPSS
Exploits10References1
CVE
CVE
added 2010/12/07 9:0 p.m.97 views

CVE-2010-4170

CVE-2010-4170 affects SystemTap, where the staprun runtime does not properly sanitize the environment before invoking modprobe in version 1.3, enabling a local user to escalate privileges by setting MODPROBE_OPTIONS to point to a malicious configuration file. Public references document this issue...

7.2CVSS6AI score0.04797EPSS
Exploits10References19Affected Software1
Debian CVE
Debian CVE
added 2010/12/07 9:0 p.m.21 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS7.1AI score0.04797EPSS
Exploits10
OpenVAS
OpenVAS
added 2010/12/02 12:0 a.m.20 views

Fedora Update for systemtap FEDORA-2010-17865

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.4AI score0.04797EPSS
Exploits10References2
0day.today
0day.today
added 2010/11/27 12:0 a.m.32 views

Local Root Privilege systemtap Escalation Vulnerability

Exploit for linux platform in category local exploits ======================================================= Local Root Privilege systemtap Escalation Vulnerability ======================================================= CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf;...

6.8AI score0.04797EPSS
Exploits10
exploitpack
exploitpack
added 2010/11/26 12:0 a.m.20 views

SystemTap - Local Privilege Escalation

SystemTap - Local Privilege Escalation CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf; MODPROBEOPTIONS="-C exploit.conf" staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...

7.2CVSS1.1AI score0.04797EPSS
Exploits10
Packet Storm
Packet Storm
added 2010/11/26 12:0 a.m.29 views

Linux Systemtap Privilege Escalation

CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf; MODPROBEOPTIONS="-C exploit.conf" staprun -u whatever RHEL Advisory: https://rhn.redhat.com/errata/RHSA-2010-0894.html...

7.2CVSS1.1AI score0.04797EPSS
Exploits10
Rows per page
Query Builder