Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2014-7844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address. CVE-2014-7844 Note that Nessus relies on the...

7.8CVSS7.5AI score0.0155EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2014:1696-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.06858EPSS
Exploits1References2
NVD
NVD
added 2020/01/14 5:15 p.m.24 views

CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

7.8CVSS7.8AI score0.0155EPSS
Exploits0References5
Cvelist
Cvelist
added 2020/01/14 4:13 p.m.31 views

CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

8AI score0.0155EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2020/01/14 4:13 p.m.27 views

CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

7.8CVSS7.8AI score0.0155EPSS
Exploits0
CVE
CVE
added 2020/01/14 4:13 p.m.122 views

CVE-2014-7844

CVE-2014-7844 affects BSD mailx 8.1.2 and earlier and Heirloom mailx 12.5 and earlier. Root cause: the expand function (fio.c) allows shell meta-characters in an email address to trigger remote command execution. Impact: remote attacker could execute arbitrary commands with the privileges of the ...

7.8CVSS7.9AI score0.0155EPSS
Exploits0References5Affected Software6
Tenable Nessus
Tenable Nessus
added 2017/04/07 12:0 a.m.57 views

F5 Networks BIG-IP : Mailx vulnerabilities (K16945)

CVE-2014-7844 The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell meta characters in an email address. CVE-2004-2771 A flaw was found in the way mailx handled the parsing of email addresses...

7.8CVSS7.5AI score0.06858EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.17 views

Amazon Linux: Security Advisory (ALAS-2015-467)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.06858EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.38 views

Debian DLA-114-1 : heirloom-mailx security update

Two security vulnerabilities were discovered in Heirloom mailx, an implementation of the 'mail' command : CVE-2004-2771 mailx interprets interprets shell meta-characters in certain email addresses. CVE-2014-7844 An unexpected feature of mailx treats syntactically valid email addresses as shell...

7.8CVSS7.5AI score0.06858EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/01/09 12:0 a.m.31 views

Mandriva Linux Security Advisory : nail (MDVSA-2015:011)

Updated nail package fixes security vulnerabilities : A flaw was found in the way mailx handled the parsing of email addresses. A syntactically valid email address could allow a local attacker to cause mailx to execute arbitrary shell commands through shell meta-characters and the direct command...

7.8CVSS7.7AI score0.06858EPSS
Exploits1References3
Amazon
Amazon
added 2015/01/08 12:0 a.m.42 views

Medium: mailx

Issue Overview: A flaw was found in the way mailx handled the parsing of email addresses. A syntactically valid email address could allow a local attacker to cause mailx to execute arbitrary shell commands through shell meta-characters and the direct command execution functionality. CVE-2004-2771...

7.8CVSS8AI score0.06858EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/01/05 12:0 a.m.39 views

Fedora 20 : mailx-12.5-11.fc20 (2014-17245)

Security fix for CVE-2004-2771, CVE-2014-7844 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.8CVSS7.2AI score0.06858EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2015/01/05 12:0 a.m.27 views

Fedora Update for mailx FEDORA-2014-17277

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/01/05 12:0 a.m.24 views

Fedora 19 : mailx-12.5-9.fc19 (2014-17277)

Security fix for CVE-2004-2771, CVE-2014-7844 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.8CVSS7.2AI score0.06858EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/01/05 12:0 a.m.26 views

Fedora 21 : mailx-12.5-14.fc21 (2014-17243)

Security fix for CVE-2004-2771, CVE-2014-7844 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.8CVSS7.2AI score0.06858EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/12/29 12:0 a.m.26 views

openSUSE Security Update : mailx (openSUSE-SU-2014:1713-1)

This mailx update fixes the following security issue : bsc909208: shell command injection via crafted email addresses CVE-2004-2771, CVE-2014-7844 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

7.8CVSS7.3AI score0.06858EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/12/26 12:0 a.m.35 views

SuSE 11.3 Security Update : mailx (SAT Patch Number 10096)

This mailx update fixes the following security issues : - Shell command injection via crafted email addresses. CVE-2004-2771 / CVE-2014-7844. bnc909208 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update...

7.8CVSS8.3AI score0.06858EPSS
Exploits1References5
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.92 views

[SECURITY] [DSA 3104-1] bsd-mailx security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3104-1 [email protected] http://www.debian.org/security/ Florian Weimer December 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS1AI score0.06858EPSS
Exploits1
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.70 views

[SECURITY] [DSA 3105-1] heirloom-mailx security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3105-1 [email protected] http://www.debian.org/security/ Florian Weimer December 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS0.06858EPSS
Exploits1
Mageia
Mageia
added 2014/12/19 3:6 p.m.36 views

Updated nail package fixes security vulnerabilities

Updated nail package fixes security vulnerabilities: A flaw was found in the way mailx handled the parsing of email addresses. A syntactically valid email address could allow a local attacker to cause mailx to execute arbitrary shell commands through shell meta-characters and the direct command...

7.8CVSS8.1AI score0.06858EPSS
Exploits1References2
Rows per page
Query Builder