Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.17 views

Amazon Linux AMI : fwsnort (ALAS-2014-409)

Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

4.4CVSS5.9AI score0.00601EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2014/02/13 12:0 a.m.14 views

Fedora Update for fwsnort FEDORA-2014-1975

Check for the Version of fwsnort OpenVAS Vulnerability Test Fedora Update for fwsnort FEDORA-2014-1975 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.4CVSS6.4AI score0.00601EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/02/13 12:0 a.m.14 views

Fedora 19 : fwsnort-1.6.4-1.fc19 (2014-1972)

notes=Fix CVE-2014-0039 fwsnort: configuration file can be loaded from cwd when run as a non-root user Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

4.4CVSS5.4AI score0.00601EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/02/13 12:0 a.m.19 views

Fedora 20 : fwsnort-1.6.4-1.fc20 (2014-1975)

Fix CVE-2014-0039 fwsnort: configuration file can be loaded from cwd when run as a non-root user Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

4.4CVSS5.4AI score0.00601EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2014/02/13 12:0 a.m.12 views

Fedora Update for fwsnort FEDORA-2014-1975

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS6.5AI score0.00601EPSS
Exploits2References2
CVE
CVE
added 2014/02/08 12:0 a.m.46 views

CVE-2014-0039

CVE-2014-0039 affects fwsnort versions prior to 1.6.4. The vulnerability arises from an untrusted search path: if fwsnort is not run as root, a local user can place a trojan horse fwsnort.conf in the current working directory to execute arbitrary code. Public advisories (Amazon Linux ALAS-2014-40...

4.4CVSS7AI score0.00601EPSS
Exploits2References7Affected Software1
Rows per page
Query Builder