11 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-25031
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - checkinstall 1.6.2, when used to create a package that contains a symlink, may trigger the creation of a mode 0777 executable file. CVE-2020-25031 Note that...
SUSE-SU-2024:1046-1 Security update for PackageKit
This update for PackageKit fixes the following issues: - CVE-2024-0217: Check that Finished signal is emitted at most once bsc1218544. - Dropped unnecessary executable permission bsc1209138...
Huawei EulerOS: Security Advisory for nautilus (EulerOS-SA-2018-1053)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL MAIN 5.04 : nautilus Vulnerability (NS-SA-2019-0015)
The remote NewStart CGSL host, running version MAIN 5.04, has nautilus packages installed that are affected by a vulnerability: - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An...
EulerOS 2.0 SP2 : nautilus (EulerOS-SA-2018-1034)
According to the version of the nautilus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when...
nautilus: Insufficient validation of trust of .desktop files with execute permission
An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a user into opening a .desktop file disguised as a document, such as a PDF, and execute...
Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update
An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Debian DSA-3994-1 : nautilus - security update
Christian Boxdorfer discovered a vulnerability in the handling of FreeDesktop.org .desktop files in Nautilus, a file manager for the GNOME desktop environment. An attacker can craft a .desktop file intended to run malicious commands but displayed as a innocuous document file in Nautilus. An user...
CVE-2017-14604
An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a user into opening a .desktop file disguised as a document, such as a PDF, and execute...
CVE-2017-14604
GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file's Exec field launches a malicious "sh -c" command. In other words, Nautilus provides no UI...
un_0wnz_macue.txt
!/usr/bin/perl -w by unl0ck-0xdeadababe http://unl0ck.void.ru http://0xdeadbabe.blackhatz.info ------------------------------------------------- Only for challenge : and Researche pruproses. Distribution: ------------------------------------------------- It's a fuck public code , not private. Fuc...