Lucene search
+L

8 matches found

OpenVAS
OpenVAS
added 2020/09/23 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-4533-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00427EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/09/23 12:0 a.m.33 views

Ubuntu 20.04 LTS : LTSP Display Manager vulnerabilities (USN-4533-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4533-1 advisory. Veeti Vetelinen discovered that the LTSP Display Manager ldm incorrectly handled user logins from unsupported shells. A local attacker could possibly use this iss...

7.8CVSS7.4AI score0.00427EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/01/11 12:0 a.m.27 views

Debian: Security Advisory (DLA-2064-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00427EPSS
Exploits0References3
Debian
Debian
added 2020/01/10 3:6 p.m.105 views

[SECURITY] [DLA 2064-1] ldm security update

Package : ldm Version : 2:2.2.15-2+deb8u1 CVE ID : CVE-2019-20373 Debian Bug : 948538 It was discovered that a hook script of ldm, the display manager for the Linux Terminal Server Project incorrectly parsed responses from an SSH server which could result in local root privilege escalation. For...

7.8CVSS7.4AI score0.00427EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/10 12:0 a.m.38 views

Debian DSA-4601-1 : ldm - security update

It was discovered that a hook script of ldm, the display manager for the Linux Terminal Server Project, incorrectly parsed responses from an SSH server, which could result in local root privilege escalation. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

7.8CVSS7.3AI score0.00427EPSS
Exploits0References5
NVD
NVD
added 2020/01/09 11:15 p.m.23 views

CVE-2019-20373

LTSP LDM through 2.18.06 allows fat-client root access because the LDMUSERNAME variable may have an empty value if the user's shell lacks support for Bourne shell syntax. This is related to a run-x-session script...

7.8CVSS7.5AI score0.00427EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/01/09 11:15 p.m.31 views

CVE-2019-20373

LTSP LDM through 2.18.06 allows fat-client root access because the LDMUSERNAME variable may have an empty value if the user's shell lacks support for Bourne shell syntax. This is related to a run-x-session script...

7.8CVSS7.1AI score0.00427EPSS
Exploits0References4
CVE
CVE
added 2020/01/09 10:27 p.m.118 views

CVE-2019-20373

CVE-2019-20373 affects LTSP’s Display Manager (ldm) up to version 2.18.06. A local attacker can gain root by exploiting an empty LDM_USERNAME when a user’s shell lacks Bourne shell syntax support, via the run-x-session script. The issue is a local privilege escalation in LTSP LDM. Affected deploy...

7.8CVSS7.3AI score0.00427EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder