Lucene search
K

14 matches found

Exploit DB
Exploit DB
added 2015/11/20 12:0 a.m.310 views

Chkrootkit - Local Privilege Escalation (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class Metasploit4 'Chkrootkit Local Privilege Escalation', 'Description' = %q Chkrootkit before 0.50 will run any executable file named /tmp/update as root, allowing a...

3.7CVSS7.4AI score0.03828EPSS
Exploits6
Metasploit
Metasploit
added 2015/11/18 6:50 p.m.76 views

Chkrootkit Local Privilege Escalation

Chkrootkit before 0.50 will run any executable file named /tmp/update as root, allowing a trivial privilege escalation. WfsDelay is set to 24h, since this is how often a chkrootkit scan is scheduled by default. This module requires Metasploit: https://metasploit.com/download Current source:...

3.7CVSS7AI score0.03828EPSS
Exploits6
OSV
OSV
added 2014/10/25 10:55 p.m.7 views

CVE-2014-0476

The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option...

6.9AI score
Exploits0References8
Cvelist
Cvelist
added 2014/10/25 10:0 p.m.24 views

CVE-2014-0476

The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option...

6.8AI score0.03828EPSS
Exploits6References8
CVE
CVE
added 2014/10/25 10:0 p.m.127 views

CVE-2014-0476

chkrootkit before 0.50 contains a flaw in the slapper function that does not properly quote file paths, allowing a local user to execute arbitrary code via a Trojan horse executable in /tmp when /tmp is not mounted with noexec. This enables local privilege escalation to root. Public reports refer...

3.7CVSS7AI score0.03828EPSS
Exploits6References8Affected Software2
Circl
Circl
added 2014/06/28 12:0 a.m.18 views

CVE-2014-0476

creationtimestamp| type| source ---|---|--- 2014-06-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33899 2015-11-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38775 2018-05-29 15:50:33+00:00| seen|...

3.7CVSS5.9AI score0.03828EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2014/06/17 12:0 a.m.28 views

Fedora Update for chkrootkit FEDORA-2014-7090

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS6.6AI score0.03828EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2014/06/17 12:0 a.m.21 views

Fedora Update for chkrootkit FEDORA-2014-7071

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS6.6AI score0.03828EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.47 views

Mandriva Linux Security Advisory : chkrootkit (MDVSA-2014:122)

Updated chkrootkit package fixes security vulnerability : The chkrootkit script contains a flaw that allows a local attacker to create an executable in /tmp that will be run by the user running chkrootkit usually root, allowing the attacker to escalate privileges CVE-2014-0476. %NASLMINLEVEL 7030...

3.7CVSS5.8AI score0.03828EPSS
Exploits6References2
securityvulns
securityvulns
added 2014/06/09 12:0 a.m.60 views

[oss-security] CVE-2014-0476 chkrootkit vulnerability

Hi, Thomas Stangner reported the following chkrootkit vulnerability. We assigned CVE-2014-0476 Cheers, Giuseppe -------- Original Message -------- Subject: Serious chkrootkit vulnerability Date: Sun, 25 May 2014 00:53:00 +0200 From: Thomas Stangner [email protected] Organization: Hetzner...

3.7CVSS0.5AI score0.03828EPSS
Exploits6
OpenVAS
OpenVAS
added 2014/06/09 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-2230-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS6.6AI score0.03828EPSS
Exploits6References2
The Hacker News
The Hacker News
added 2014/06/07 12:29 a.m.84 views

Linux Kernel Vulnerable to Privilege Escalation and DoS Attack

Multiple flaws have been identified in Linux Kernel and related software could allow hackers to hack your Linux machines, shared hosting and websites hosted on them. PRIVILEGE ESCALATION VULNERABILITY IN LINUX KERNEL A privilege escalation vulnerability has been identified in the widely used Linu...

7.2CVSS8AI score0.37233EPSS
Exploits23
UbuntuCve
UbuntuCve
added 2014/06/04 12:0 a.m.32 views

CVE-2014-0476

The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option...

3.7CVSS6.3AI score0.03828EPSS
Exploits6References2
Debian
Debian
added 2014/06/03 9:37 p.m.36 views

[SECURITY] [DSA 2945-1] chkrootkit security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2945-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 03, 2014 http://www.debian.org/security/faq -...

3.7CVSS1.8AI score0.03828EPSS
Exploits6
Rows per page
Query Builder