21 matches found
EUVD-2014-0136
Malware in sbrugna...
Amazon Linux: Security Advisory (ALAS-2014-409)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : fwsnort (ALAS-2014-409)
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
Medium: fwsnort
Issue Overview: Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory. Affected Packages: fwsnort Issue Correction: Run yum update fwsnort or yum update...
fwsnort 'fwsnort.conf'本地权限提升漏洞
BUGTRAQ ID: 65341 CVECAN ID: CVE-2014-0039 fwsnort是一个perl脚本,可疑将Snort规则转换为相同的iptables规则。 fwsnort 1.6.4之前版本在非root权限运行时,存在可疑搜索路径漏洞,可使本地用户通过当前工作目录内的木马fwsnort.conf,利用此漏洞执行任意代码。 0 fwsnort fwsnort 1.6.3 fwsnort fwsnort 厂商补丁: fwsnort ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Fedora 20 : fwsnort-1.6.4-1.fc20 (2014-1975)
Fix CVE-2014-0039 fwsnort: configuration file can be loaded from cwd when run as a non-root user Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
Fedora 19 : fwsnort-1.6.4-1.fc19 (2014-1972)
notes=Fix CVE-2014-0039 fwsnort: configuration file can be loaded from cwd when run as a non-root user Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
Fedora Update for fwsnort FEDORA-2014-1975
Check for the Version of fwsnort OpenVAS Vulnerability Test Fedora Update for fwsnort FEDORA-2014-1975 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for fwsnort FEDORA-2014-1972
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for fwsnort FEDORA-2014-1975
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for fwsnort FEDORA-2014-1972
Check for the Version of fwsnort OpenVAS Vulnerability Test Fedora Update for fwsnort FEDORA-2014-1972 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 19 Update: fwsnort-1.6.4-1.fc19
fwsnort translates Snort rules into equivalent iptables rules and generates a Bourne shell script that implements the resulting iptables commands. In addition, fwsnort optionally uses the IPTables::Parse module to parse the iptables ruleset on the machine to determine which Snort rules are applic...
[SECURITY] Fedora 20 Update: fwsnort-1.6.4-1.fc20
fwsnort translates Snort rules into equivalent iptables rules and generates a Bourne shell script that implements the resulting iptables commands. In addition, fwsnort optionally uses the IPTables::Parse module to parse the iptables ruleset on the machine to determine which Snort rules are applic...
CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
DEBIAN-CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
Design/Logic Flaw
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...
CVE-2014-0039
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory...