Lucene search
K

2668 matches found

UbuntuCve
UbuntuCve
added 2011/10/24 12:0 a.m.37 views

CVE-2011-3628

Untrusted search path vulnerability in pammotd aka the MOTD module in libpam-modules before 1.1.3-2ubuntu2.1 on Ubuntu 11.10, before 1.1.2-2ubuntu8.4 on Ubuntu 11.04, before 1.1.1-4ubuntu2.4 on Ubuntu 10.10, before 1.1.1-2ubuntu5.4 on Ubuntu 10.04 LTS, and before 0.99.7.1-5ubuntu6.5 on Ubuntu 8.0...

6.9CVSS5.9AI score0.00383EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2011/05/28 12:0 a.m.59 views

python security, bug fix, and enhancement update

python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...

6.9CVSS7.3AI score0.14643EPSS
Exploits3
NVD
NVD
added 2011/04/10 2:55 a.m.24 views

CVE-2011-1095

locale/programs/locale.c in locale in the GNU C Library aka glibc or libc6 before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function...

6.2CVSS7.8AI score0.00518EPSS
Exploits1References21
OSV
OSV
added 2011/04/10 2:55 a.m.2 views

DEBIAN-CVE-2011-1095

locale/programs/locale.c in locale in the GNU C Library aka glibc or libc6 before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function...

6.2CVSS7AI score0.00518EPSS
Exploits1References1
Prion
Prion
added 2011/04/10 2:55 a.m.25 views

Design/Logic Flaw

locale/programs/locale.c in locale in the GNU C Library aka glibc or libc6 before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function...

6.2CVSS6.7AI score0.00518EPSS
Exploits1References21Affected Software1
CVE
CVE
added 2011/04/10 1:29 a.m.94 views

CVE-2011-1095

Summary of CVE-2011-1095 (glibc locale quoting issue) : The vulnerability affects locale/programs/locale.c in the GNU C Library (glibc/libc6) prior to version 2.13. The code does not properly quote its output, which might allow local users to gain privileges via a crafted localization environment...

6.2CVSS7.6AI score0.00518EPSS
Exploits1References21Affected Software1
Debian CVE
Debian CVE
added 2011/04/10 1:29 a.m.27 views

CVE-2011-1095

locale/programs/locale.c in locale in the GNU C Library aka glibc or libc6 before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function...

6.2CVSS4.4AI score0.00518EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2011/04/09 12:0 a.m.27 views

CVE-2011-1095

locale/programs/locale.c in locale in the GNU C Library aka glibc or libc6 before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function...

6.2CVSS6.3AI score0.00518EPSS
Exploits1References2
Prion
Prion
added 2011/03/18 4:55 p.m.25 views

Design/Logic Flaw

The S/MIME feature in Open Ticket Request System OTRS before 2.2.5, and 2.3.x before 2.3.0-beta1, does not properly configure the RANDFILE environment variable for OpenSSL, which might make it easier for remote attackers to decrypt e-mail messages that had lower than intended entropy available fo...

5CVSS7.2AI score0.01984EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2011/03/07 12:0 a.m.41 views

Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1

Ubuntu Update for Linux kernel vulnerabilities USN-1079-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10791.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

10CVSS0.9AI score0.2349EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2011/02/17 12:0 a.m.28 views

CVE-2010-4450

Unspecified vulnerability in the Java Runtime Environment JRE in Oracle Java SE and Java for Business 6 Update 23 and earlier for Solaris and Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.229 and earlier for Solaris and Linux allows local standalone applications to affect...

3.7CVSS5.9AI score0.00411EPSS
Exploits0References5
NVD
NVD
added 2011/02/07 9:0 p.m.15 views

CVE-2011-0902

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified 1 PATH or 2 LDLIBRARYPATH environment variable...

6.9CVSS7.4AI score0.01517EPSS
Exploits1References3
Prion
Prion
added 2011/02/07 9:0 p.m.11 views

Path traversal

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified 1 PATH or 2 LDLIBRARYPATH environment variable...

6.9CVSS7.9AI score0.01517EPSS
Exploits1References3
NVD
NVD
added 2010/12/29 6:0 p.m.25 views

CVE-2010-4604

Stack-based buffer overflow in the GeneratePassword function in dsmtca aka the Trusted Communications Agent or TCA in the backup-archive client in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows...

7.2CVSS6.8AI score0.00937EPSS
Exploits1References9
Prion
Prion
added 2010/12/29 6:0 p.m.22 views

Stack overflow

Stack-based buffer overflow in the GeneratePassword function in dsmtca aka the Trusted Communications Agent or TCA in the backup-archive client in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows...

7.2CVSS7.4AI score0.00937EPSS
Exploits1References9Affected Software1
OSV
OSV
added 2010/12/07 10:0 p.m.0 views

DEBIAN-CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS6.9AI score0.04797EPSS
Exploits10References1
NVD
NVD
added 2010/12/07 10:0 p.m.17 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS6.1AI score0.04797EPSS
Exploits10References19
Prion
Prion
added 2010/12/07 10:0 p.m.15 views

Design/Logic Flaw

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS6.7AI score0.04797EPSS
Exploits10References19Affected Software1
UbuntuCve
UbuntuCve
added 2010/12/07 10:0 p.m.30 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

7.2CVSS5.9AI score0.04797EPSS
Exploits10References1
Cvelist
Cvelist
added 2010/12/07 9:0 p.m.20 views

CVE-2010-4170

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBEOPTIONS environment variable to specify a malicious configuration file...

6AI score0.04797EPSS
Exploits10References19
Rows per page
Query Builder