8 matches found
Gentoo Security Advisory GLSA 201406-15
Gentoo Linux Local Security Checks GLSA 201406-15 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Directory traversal
kcleanup.cpp in KDirStat 2.7.3 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a ' single quote character in the directory name, a different vulnerability than CVE-2014-2527...
CVE-2014-2527
CVE-2014-2527 affects KDirStat’s kcleanup.cpp: 2.7.0 contains a flaw where strings are not properly quoted when deleting a directory, allowing remote attackers to run arbitrary commands via a double-quote character in the directory name. The related OSV/OpenVAS entries confirm the same issue and ...
SuSE 11.3 Security Update : kdirstat (SAT Patch Number 9515)
The following security issue has been fixed : - 868682: CVE-2014-2527 / CVE-2014-2528: kdirstat: command injection in kcleanup %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itsel...
GLSA-201406-15 : KDirStat: Arbitrary command execution
The remote host is affected by the vulnerability described in GLSA-201406-15 KDirStat: Arbitrary command execution Missing escape of executable shell command in KDirStat can be used to insert malicious shell commands. Impact : A local attacker could possibly execute arbitrary shell command with t...
Fedora Update for k4dirstat FEDORA-2014-4135
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for k4dirstat FEDORA-2014-4121
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : k4dirstat-2.7.0-0.14.20101010git6c0a9e6.fc19 (2014-4121)
Fix CVE-2014-2527 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Networ...