Lucene search
K

5 matches found

securityvulns
securityvulns
added 2014/06/17 12:0 a.m.74 views

[oss-security] Re: CVE request: PHP configure script and Lynis tool /tmp/ issues reported on full disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 39 if "$OS" = "AIX" ; then 40 TMPFILE=/tmp/lynis.$$ We can make a CVE assignment corresponding to your disclosure of this lynis.$$ issue on oss-security. Use CVE-2014-3982. A CVE for this most likely won't or shouldn't have a...

3.3CVSS6AI score0.0034EPSS
Exploits0
NVD
NVD
added 2014/06/08 6:55 p.m.31 views

CVE-2014-3982

include/testswebservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis. file...

3.3CVSS6.1AI score0.0034EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/06/08 6:55 p.m.29 views

CVE-2014-3982

include/testswebservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis. file...

3.3CVSS5.9AI score0.0034EPSS
Exploits0References2
CVE
CVE
added 2014/06/08 6:0 p.m.54 views

CVE-2014-3982

CVE-2014-3982 affects Lynis on AIX prior to 1.5.5, where include/tests_webservers can be abused via a symlink attack to overwrite the file /tmp/lynis.*, enabling local privilege impact (I) with partial integrity and availability impacts; confidentiality remains unaffected. The issue is mitigated ...

3.3CVSS6.2AI score0.0034EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2014/06/08 6:0 p.m.25 views

CVE-2014-3982

include/testswebservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis. file...

3.3CVSS6.1AI score0.0034EPSS
Exploits0
Rows per page
Query Builder