Lucene search
K

6 matches found

securityvulns
securityvulns
added 2014/01/08 12:0 a.m.64 views

[SECURITY] [DSA 2836-1] devscripts security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2836-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 05, 2014 http://www.debian.org/security/faq -...

7.5CVSS1.2AI score0.04094EPSS
Exploits0
CVE
CVE
added 2014/01/07 5:0 p.m.82 views

CVE-2013-6888

CVE-2013-6888 affects devscripts’ uscan component. Before version 2.13.9, uscan could execute arbitrary code via a crafted tarball downloaded from a malicious source. Debian/Ubuntu advisories note remote code execution with the vulnerable uscan and specify fixes: Debian wheezy updated to 2.12.6+d...

7.5CVSS8.6AI score0.04094EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/01/06 12:0 a.m.28 views

Debian DSA-2836-1 : devscripts - arbitrary code execution

Several vulnerabilities have been discovered in uscan, a tool to scan upstream sites for new releases of packages, which is part of the devscripts package. An attacker controlling a website from which uscan would attempt to download a source tarball could execute arbitrary code with the privilege...

8.8CVSS7.9AI score0.04094EPSS
Exploits0References5
Debian
Debian
added 2014/01/05 6:5 p.m.28 views

[SECURITY] [DSA 2836-1] devscripts security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2836-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 05, 2014 http://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.04094EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/01/05 12:0 a.m.35 views

Debian Security Advisory DSA 2836-1 (devscripts - arbitrary code execution)

Several vulnerabilities have been discovered in uscan, a tool to scan upstream sites for new releases of packages, which is part of the devscripts package. An attacker controlling a website from which uscan would attempt to download a source tarball could execute arbitrary code with the privilege...

7.5CVSS0.04094EPSS
Exploits0References1
OSV
OSV
added 2014/01/05 12:0 a.m.19 views

DSA-2836-1 devscripts - arbitrary code execution

Bulletin has no description...

8.8CVSS8.6AI score0.04094EPSS
Exploits0
Rows per page
Query Builder