Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2015/09/08 12:0 a.m.28 views

Fedora 23 : ruby-ncurses-1.3.1-16.fc23 / rubygem-sup-0.21.0-3.fc23 (2015-14929)

ruby-ncurses-1.3.1-16.fc23 - Fix Ruby 2.2 compatibility. rubygem- sup-0.21.0-3.fc23 - Relax rubygem-chronic dependency. - Temporary use ncurses, until rubygem-ncursesw is in Fedora. - Small cleanup. Note that Tenable Network Security has extracted the preceding description block directly from the...

6.8CVSS5.4AI score0.03239EPSS
Exploits1References4
OSV
OSV
added 2013/12/07 8:55 p.m.8 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

7.4AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2013/12/07 8:55 p.m.13 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS6.2AI score0.03239EPSS
Exploits1References2
CVE
CVE
added 2013/12/07 8:0 p.m.68 views

CVE-2013-4479

CVE-2013-4479 affects the Sup email client: vulnerable component is lib/sup/message_chunks.rb. Exposed in versions before 0.13.2.1 and 0.14.x before 0.14.1.1, allowing remote attackers to execute arbitrary commands via shell metacharacters in the content_type of an email attachment. Impact is rem...

6.8CVSS7.5AI score0.03239EPSS
Exploits1References8Affected Software1
securityvulns
securityvulns
added 2013/12/01 12:0 a.m.42 views

[SECURITY] [DSA 2805-1] sup-mail security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.8AI score0.03239EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2013/11/29 12:0 a.m.17 views

Debian DSA-2805-1 : sup-mail - command injection

joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. - CVE-2013-4478 Sup wrongly handled the filename of attachments. - CVE-2013-4479 Sup did not sanitize the...

6.8CVSS5.5AI score0.03239EPSS
Exploits2References8
Debian
Debian
added 2013/11/27 9:38 p.m.30 views

[SECURITY] [DSA 2805-1] sup-mail security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...

6.8CVSS7.2AI score0.03239EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/11/27 12:0 a.m.27 views

Debian Security Advisory DSA 2805-1 (sup-mail - command injection)

joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. CVE-2013-4478 Sup wrongly handled the filename of attachments. CVE-2013-4479 Sup did not sanitize the...

6.8CVSS0.4AI score0.03239EPSS
Exploits2References1
OSV
OSV
added 2013/11/27 12:0 a.m.20 views

DSA-2805-1 sup-mail - remote command injection

Bulletin has no description...

6.8CVSS6AI score0.03239EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/11/26 12:0 a.m.9 views

Debian: Security Advisory (DSA-2805-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.03239EPSS
Exploits2References3
Rows per page
Query Builder