Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.17 views

Debian: Security Advisory (DLA-53-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03614EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.29 views

Debian DLA-53-1 : apt security update

It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488, performs incorrect verification of 304 replies CVE-2014-0487 and does not perform the checksum check when the Acquire::GzipIndexes option is used CVE-2014-0489. NOTE: Tenab...

7.5CVSS5.3AI score0.03614EPSS
Exploits0References5
OSV
OSV
added 2014/11/03 10:55 p.m.5 views

CVE-2014-0489

APT before 1.0.9, when the Acquire::GzipIndexes option is enabled, does not validate checksums, which allows remote attackers to execute arbitrary code via a crafted package...

7.3AI score
Exploits0References5
CVE
CVE
added 2014/11/03 10:0 p.m.73 views

CVE-2014-0489

CVE-2014-0489 affects APT prior to 1.0.9: when Acquire::GzipIndexes is enabled, it does not validate checksums, enabling remote code execution via a crafted package. The vulnerability is documented across multiple feeds (NVD, OSV, Debian advisories) with a CVSS v2 base score of 7.5 (HIGH). Affect...

7.5CVSS7.5AI score0.03614EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2014/11/03 10:0 p.m.27 views

CVE-2014-0489

APT before 1.0.9, when the Acquire::GzipIndexes option is enabled, does not validate checksums, which allows remote attackers to execute arbitrary code via a crafted package...

7.5CVSS7.3AI score0.03614EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/09/17 12:0 a.m.21 views

Debian DSA-3025-1 : apt - security update

It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488 , performs incorrect verification of 304 replies CVE-2014-0487 , does not perform the checksum check when the Acquire::GzipIndexes option is used CVE-2014-0489 and does not...

7.5CVSS5.2AI score0.03614EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2014/09/17 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-2348-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.03614EPSS
Exploits0References2
Debian
Debian
added 2014/09/16 4:51 p.m.25 views

[SECURITY] [DLA 53-1] apt security update

Package : apt Version : 0.8.10.3+squeeze3 CVE ID : CVE-2014-0487 CVE-2014-0488 CVE-2014-0489 It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488, performs incorrect verification of 304 replies CVE-2014-0487 and does not perfo...

7.5CVSS6.4AI score0.03614EPSS
Exploits0
Debian
Debian
added 2014/09/16 4:30 p.m.26 views

[SECURITY] [DSA 3025-1] apt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3025-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS6.5AI score0.03614EPSS
Exploits0
Debian
Debian
added 2014/09/16 4:30 p.m.26 views

[SECURITY] [DSA 3025-1] apt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3025-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS2AI score0.03614EPSS
Exploits0
Ubuntu
Ubuntu
added 2014/09/16 4:20 p.m.49 views

USN-2348-1: APT vulnerabilities

It was discovered that APT did not re-verify downloaded files when the If-Modified-Since wasn't met. CVE-2014-0487 It was discovered that APT did not invalidate repository data when it switched from an unauthenticated to an authenticated state. CVE-2014-0488 It was discovered that the APT...

7.5CVSS5.3AI score0.03614EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2014/09/16 4:0 p.m.26 views

CVE-2014-0489

APT before 1.0.9, when the Acquire::GzipIndexes option is enabled, does not validate checksums, which allows remote attackers to execute arbitrary code via a crafted package...

7.5CVSS6.2AI score0.03614EPSS
Exploits0References2
Rows per page
Query Builder