CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Prion•added 2007/08/17 10:17 p.m.•14 views

Code injection

The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions...

4.6CVSS6.8AI score0.00074EPSS

Exploits0References3

NVD•added 2007/08/17 10:17 p.m.•9 views

CVE-2007-4393

The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions...

4.6CVSS6.3AI score0.00074EPSS

Exploits0References3

CVE•added 2007/08/17 10:0 p.m.•48 views

CVE-2007-4393

The CVE-2007-4393 entry describes a local privilege issue in SUSE Linux where the orarun installation script adds the oracle user to the disk group before 20070810, allowing that local oracle user to read or write raw disk partitions. The vulnerability arises from disk group membership enabling a...

4.6CVSS6.3AI score0.00074EPSS

Exploits0References3Affected Software1

Cvelist•added 2007/08/17 10:0 p.m.•20 views

CVE-2007-4393

The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions...

6.3AI score0.00074EPSS

Exploits0References3

securityvulns•added 2000/05/17 12:0 a.m.•42 views

Дырка в kcsd под Linux

kcsd использует внешний shell определяемый переменной SHELL, которая задается пользователем. Таким образом, подменив SHELL можно получить привелегии группы disk, позволяющие менять разрешения любых файлов...

0.5AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by