5 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-4035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scripts/xzgrep.in in xzgrep 5.2.x before 5.2.0, before 5.0.0 does not properly process file names containing semicolons, which allows remote attackers to execut...
RHEL 5 : xz (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xzgrep: incorrect parsing of filenames containing a semicolon CVE-2015-4035 Note that Nessus has not tested for thi...
RHEL 6 : xz (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xzgrep: incorrect parsing of filenames containing a semicolon CVE-2015-4035 Note that Nessus has not tested for thi...
CVE-2015-4035
scripts/xzgrep.in in xzgrep 5.2.x before 5.2.0, before 5.0.0 does not properly process file names containing semicolons, which allows remote attackers to execute arbitrary code by having a user run xzgrep on a crafted file name...
CVE-2015-4035
CVE-2015-4035 affects the xzgrep utility. Technical details in connected sources show that the vulnerability lies in the scripts/xzgrep.in file within xzgrep, where filenames containing semicolons are not processed correctly. This allows a remote attacker to cause arbitrary code execution if a us...