Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2014/08/31 12:0 a.m.19 views

Fedora Update for gvfs FEDORA-2014-9092

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS6.5AI score0.00265EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/08/31 12:0 a.m.12 views

Fedora Update for libplist FEDORA-2014-9092

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS6.5AI score0.00265EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/08/31 12:0 a.m.11 views

Fedora Update for libgpod FEDORA-2014-9092

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS6.5AI score0.00265EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/08/30 12:0 a.m.14 views

Fedora 20 : gvfs-1.18.3-3.fc20 / ifuse-1.1.3-3.fc20 / libgpod-0.8.3-2.fc20 / etc (2014-9092)

Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDGCONFIGHOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 Note that Tenable Network Security has extracted the preceding description block directly...

3.3CVSS5.6AI score0.00265EPSS
Exploits1References11
OSV
OSV
added 2014/01/19 6:2 p.m.6 views

CVE-2013-2142

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDGCONFIGHOME are not set, allows local users to overwrite arbitrary files via a symlink attack on 1 HostCertificate.pem, 2 HostPrivateKey.pem, 3 libimobiledevicerc, 4 RootCertificate.pem, or 5 RootPrivateKey.pem in...

6.1AI score
Exploits0References4
CVE
CVE
added 2014/01/19 4:0 p.m.49 views

CVE-2013-2142

CVE-2013-2142 affects libimobiledevice 1.1.4 where, if HOME and XDG_CONFIG_HOME are not set, a local user can cause a symlink attack to overwrite arbitrary files in /tmp/root/.config/libimobiledevice/ (HostCertificate.pem, HostPrivateKey.pem, libimobiledevicerc, RootCertificate.pem, RootPrivateKe...

3.3CVSS6.1AI score0.00265EPSS
Exploits1References4Affected Software1
securityvulns
securityvulns
added 2013/10/09 12:0 a.m.35 views

[USN-1927-1] libimobiledevice vulnerability

========================================================================== Ubuntu Security Notice USN-1927-1 August 14, 2013 libimobiledevice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

3.3CVSS1.3AI score0.00265EPSS
Exploits1
Mageia
Mageia
added 2013/08/17 8:47 a.m.24 views

Updated libimobiledevice packages fix CVE-2013-2142

Updated libimobiledevice packages fix security vulnerability: Paul Collins discovered that libimobiledevice incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files and access device keys. In the default Ubuntu installation, this issue shoul...

3.3CVSS2.6AI score0.00265EPSS
Exploits1References2
Rows per page
Query Builder