10 matches found
Ubuntu: Security Advisory (USN-6008-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : Exo vulnerability (USN-6008-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6008-1 advisory. It was discovered that Exo did not properly sanitized desktop files. A remote attacker could possibly use this issue to to cau...
Security fix for the ALT Linux 10 package libexo version 4.16.4-alt1
4.16.4-alt1 built June 24, 2022 Mikhail Efremov in task 302058 --- June 14, 2022 Mikhail Efremov - Updated to 4.16.4 fixes: CVE-2022-32278...
Debian: Security Advisory (DLA-3056-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-3056-1 : exo - LTS security update
The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3056 advisory. - XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server. CVE-2022-32278 Note that Nessus ha...
[SECURITY] [DSA 5164-1] exo security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5164-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez June 18, 2022 https://www.debian.org/security/faq -...
DEBIAN-CVE-2022-32278
XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server...
UBUNTU-CVE-2022-32278
XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server...
CVE-2022-32278
CVE-2022-32278 affects XFCE Exo (XFCE 4.16) where xdg-open can execute a .desktop file hosted on an attacker-controlled FTP server, enabling arbitrary code execution. Root cause: insecure handling of .desktop files in remote sources. Affected component: exo (XFCE library). Impact: remote code exe...
FreeBSD : XFCE -- Allows executing malicious .desktop files pointing to remote code (55cff5d2-e95c-11ec-ae20-001999f8d30b)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 55cff5d2-e95c-11ec-ae20-001999f8d30b advisory. - XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on ...