Lucene search
K

8 matches found

NVD
NVD
added 2017/08/23 3:29 p.m.31 views

CVE-2015-5224

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks...

9.8CVSS9.5AI score0.04526EPSS
Exploits0References4
OSV
OSV
added 2017/08/23 3:29 p.m.3 views

DEBIAN-CVE-2015-5224

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks...

9.8CVSS5.2AI score0.04526EPSS
Exploits0References1
OSV
OSV
added 2017/08/23 3:29 p.m.12 views

CVE-2015-5224

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks...

9.8CVSS9.4AI score
Exploits0References8
Debian CVE
Debian CVE
added 2017/08/23 3:0 p.m.27 views

CVE-2015-5224

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks...

9.8CVSS6.8AI score0.04526EPSS
Exploits0
CVE
CVE
added 2017/08/23 3:0 p.m.77 views

CVE-2015-5224

CVE-2015-5224 affects util-linux's login-utils mkostemp usage, enabling remote attackers to cause file name collisions and potentially other attacks. Affected component is login-utils in util-linux; root cause is incorrect usage of mkostemp. CVSS indicates high/critical impact vectors (network at...

9.8CVSS9.3AI score0.04526EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2015-0352)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04526EPSS
Exploits0References4
OSV
OSV
added 2015/09/08 5:55 p.m.7 views

MGASA-2015-0352 Updated util-linux packages fix CVE-2015-5224

Updated util-linux packages fix security vulnerability: The chfn and chsh commands in util-linux's login-utils are vulnerable to a file name collision due to incorrect mkstemp usage. If the chfn and chsh binaries are both setuid-root they eventually call mkostemp in such a way that an attacker...

9.8CVSS9.4AI score0.04526EPSS
Exploits0References3
Mageia
Mageia
added 2015/09/08 5:55 p.m.48 views

Updated util-linux packages fix CVE-2015-5224

Updated util-linux packages fix security vulnerability: The chfn and chsh commands in util-linux's login-utils are vulnerable to a file name collision due to incorrect mkstemp usage. If the chfn and chsh binaries are both setuid-root they eventually call mkostemp in such a way that an attacker...

9.8CVSS9.1AI score0.04526EPSS
Exploits0References2
Rows per page
Query Builder