Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-3147

Malware in sbrugna...

7.1CVSS6.1AI score0.02073EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2014-0289)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.5AI score0.07322EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2014/07/21 12:0 a.m.30 views

Fedora Update for dpkg FEDORA-2014-7697

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.4AI score0.07322EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/05/26 12:0 a.m.26 views

Fedora Update for dpkg FEDORA-2014-6277

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.02859EPSS
Exploits0References2
Prion
Prion
added 2014/05/14 12:55 a.m.24 views

Directory traversal

dpkg 1.15.9 on Debian squeeze introduces support for the "C-style encoded filenames" feature without recognizing that the squeeze patch program lacks this feature, which triggers an interaction error that allows remote attackers to conduct directory traversal attacks and modify files outside of t...

7.1CVSS6.8AI score0.02859EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2014/04/30 2:22 p.m.10 views

CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

6.4AI score
Exploits0References3
NVD
NVD
added 2014/04/30 2:22 p.m.18 views

CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

5CVSS6.4AI score0.02859EPSS
Exploits0References3
CVE
CVE
added 2014/04/30 2:0 p.m.76 views

CVE-2014-0471

CVE-2014-0471 describes a directory-traversal in dpkg’s unpacking code (C-style filename quoting) that lets remote attackers write arbitrary files via a crafted source package. Affected are dpkg versions before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8. The root cause is mis-handlin...

5CVSS6.5AI score0.02859EPSS
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2014/04/29 12:0 a.m.32 views

Debian DSA-2915-1 : dpkg - security update

Jakub Wilk discovered that dpkg did not correctly parse C-style filename quoting, allowing for paths to be traversed when unpacking a source package - leading to the creation of files outside the directory of the source being unpacked. The update to the stable distribution wheezy incorporates...

5CVSS5.3AI score0.02859EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/04/28 12:0 a.m.25 views

CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

5CVSS6AI score0.02859EPSS
Exploits0References3
Rows per page
Query Builder