Lucene search
K

13 matches found

Circl
Circl
added 2025/04/03 11:19 p.m.8 views

CVE-2014-9471

creationtimestamp| type| source ---|---|--- 2025-04-03 23:19:50+00:00| seen| https://bsky.app/profile/reodus.bsky.social/post/3llx22ttdlc2b...

7.5CVSS6.4AI score0.07087EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.25 views

RHEL 7 : coreutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - coreutils: memory corruption flaw in parsedatetime CVE-2014-9471 - coreutils: Non-privileged session can...

6.5CVSS6.6AI score0.07087EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.2 views

SUSE CVE-2014-9471

The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...

7.5CVSS8AI score0.07087EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2015-0029)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.07087EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2015:0792-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.1AI score0.07238EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2015/04/29 12:0 a.m.26 views

SuSE 11.3 Security Update : coreutils (SAT Patch Number 10620)

Coreutils was updated to fix one security issue and one non-security bug. The following vulnerability was fixed : - Commands such as date, touch or using parsedatetime could, when accepting untrusted input, allow an attacker to crash the application or, potentially, execute arbitrary code...

7.5CVSS6.2AI score0.07087EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-2473-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.5AI score0.07087EPSS
Exploits2References2
Mageia
Mageia
added 2015/01/19 4:47 p.m.26 views

Updated coreutils packages fix CVE-2014-9471

Updated coreutils packages fix security vulnerability: Bertrand Jacquin and Fiedler Roman discovered date and touch incorrectly handled user-supplied input. An attacker could possibly use this to cause a denial of service or potentially execute code CVE-2014-9471...

7.5CVSS6.8AI score0.07087EPSS
Exploits1References2
OSV
OSV
added 2015/01/16 4:59 p.m.5 views

CVE-2014-9471

The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...

7.6AI score
Exploits0References18
NVD
NVD
added 2015/01/16 4:59 p.m.15 views

CVE-2014-9471

The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...

7.5CVSS6.8AI score0.07087EPSS
Exploits1References10
CVE
CVE
added 2015/01/16 4:0 p.m.89 views

CVE-2014-9471

CVE-2014-9471 refers to a vulnerability in GNU coreutils where the parse_datetime() function can be triggered by a crafted date string (e.g., --date=TZ="123"345) to cause a crash or potentially execute arbitrary code. The initial description explicitly mentions denial of service (crash) and possi...

7.5CVSS7.7AI score0.07087EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2015/01/16 4:0 p.m.42 views

CVE-2014-9471

The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...

9.5AI score0.07087EPSS
Exploits1References10
Ubuntu
Ubuntu
added 2015/01/14 11:27 p.m.54 views

USN-2473-1: coreutils vulnerabilities

It was discovered that the distcheck rule in dist-check.mk in GNU coreutils allows local users to gain privileges via a symlink attack on a directory tree under /tmp. This issue only affected Ubuntu 10.04 LTS. CVE-2009-4135 Bertrand Jacquin and Fiedler Roman discovered date and touch incorrectly...

7.5CVSS6.2AI score0.07087EPSS
Exploits2
Rows per page
Query Builder