Lucene search
K

38 matches found

Vulnrichment
Vulnrichment
added 2023/02/07 12:0 a.m.3 views

CVE-2022-46663

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal...

7AI score0.01412EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/02/07 12:0 a.m.4 views

GNU Less 安全漏洞

GNU Less is an application of the American GNU community. A security vulnerability exists in versions prior to GNU Less 609. An attacker exploited the vulnerability to bypass escape sequence filtering via specially crafted data resulting in...

7.5CVSS7.2AI score0.01412EPSS
Exploits0References11
CVE
CVE
added 2023/02/07 12:0 a.m.169 views

CVE-2022-46663

CVE-2022-46663 affects GNU Less up to version 608 (vulnerable before 609). Crafted data can cause a failure to filter ANSI escape sequences when using the -R option, potentially leaking terminal control sequences. This is documented in multiple sources within connected documents, which indicate t...

7.5CVSS7.1AI score0.01412EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2023/02/07 12:0 a.m.18 views

CVE-2022-46663

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal...

7.7AI score0.01412EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2023/02/07 12:0 a.m.67 views

CVE-2022-46663

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal...

7.5CVSS7.3AI score0.01412EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/03/13 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for less (EulerOS-SA-2020-1238)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.5AI score0.04017EPSS
Exploits0References2
NVD
NVD
added 2015/04/14 6:59 p.m.11 views

CVE-2014-9488

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

10CVSS6.7AI score0.04017EPSS
Exploits0References5
OSV
OSV
added 2015/04/14 6:59 p.m.2 views

DEBIAN-CVE-2014-9488

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

10CVSS7.4AI score0.04017EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2015/04/14 6:59 p.m.39 views

CVE-2014-9488

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

10CVSS5.9AI score0.04017EPSS
Exploits0References3
Prion
Prion
added 2015/04/14 6:59 p.m.18 views

Out-of-bounds

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

10CVSS7.3AI score0.04017EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2015/04/14 6:0 p.m.16 views

CVE-2014-9488

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

6.6AI score0.04017EPSS
Exploits0References5
CVE
CVE
added 2015/04/14 6:0 p.m.97 views

CVE-2014-9488

CVE-2014-9488 affects the is_utf8_well_formed() function in GNU less up to version 475, enabling an out-of-bounds read via malformed UTF-8 data. Connected advisories report this as a fixed issue in various distributions (e.g., SUSE/SUSE-SU-2020:2687-1; Mageia MGASA-2015-0139; openSUSE updates; Eu...

10CVSS6.7AI score0.04017EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2015/04/14 6:0 p.m.29 views

CVE-2014-9488

The isutf8wellformed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read...

10CVSS6.7AI score0.04017EPSS
Exploits0
Cvelist
Cvelist
added 2005/07/19 4:0 a.m.24 views

CVE-2004-2264

Format string bug in the openaltfile function in filename.c for GNU less 382, 381, and 358 might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environment variable. NOTE: since less is not setuid or setgid, then this is not a...

7.6AI score0.02031EPSS
Exploits0References5
CVE
CVE
added 2005/07/19 4:0 a.m.70 views

CVE-2004-2264

GNU less versions 358–382 contain a format-string bug in the open_altfile function (filename.c) that may allow local users to cause a denial of service or possibly execute arbitrary code via the LESSOPEN environment variable. The PT-2004-3159 advisory notes this is not a vulnerability unless priv...

6.4CVSS7.7AI score0.02031EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2005/07/19 4:0 a.m.48 views

CVE-2004-2264

Format string bug in the openaltfile function in filename.c for GNU less 382, 381, and 358 might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environment variable. NOTE: since less is not setuid or setgid, then this is not a...

6.4CVSS7.8AI score0.02031EPSS
Exploits0
NVD
NVD
added 2004/12/31 5:0 a.m.30 views

CVE-2004-2264

Format string bug in the openaltfile function in filename.c for GNU less 382, 381, and 358 might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environment variable. NOTE: since less is not setuid or setgid, then this is not a...

6.4CVSS7.6AI score0.02031EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2004/12/31 12:0 a.m.5 views

PT-2004-3159 · Gnu · Gnu Less

Name of the Vulnerable Software and Affected Versions: GNU less versions 358 through 382 Description: A format string bug in the open altfile function in filename.c might allow local users to cause a denial of service or possibly execute arbitrary code via format strings in the LESSOPEN environme...

6.4CVSS7.9AI score0.02031EPSS
Exploits0References7
Rows per page
Query Builder