117 matches found
RHEL 8 : ksh (RHSA-2020:0559)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0559 advisory. KornShell ksh is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell sh and includes many features o...
CentOS: Security Advisory for ksh (CESA-2020:0515)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CentOS 6 : ksh (RHSA-2020:0515)
The remote CentOS Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0515 advisory. - In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass...
Oracle Linux 6 : ksh (ELSA-2020-0515)
The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-0515 advisory. 20120801-38 - Do not evaluate arithmetic expressions from environment variables at startup Resolves: 1790542 Tenable has extracted the preceding description blo...
RHEL 6 : ksh (RHSA-2020:0515)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0515 advisory. KornShell ksh is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell sh and includes many features o...
Fedora 30 : 1:ksh (2020-a0f0eb8500)
Do not evaluate arithmetic expressions from environment variables at startup Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Scientific Linux Security Update : ksh on SL6.x i386/x86_64 (20200217)
Security Fixes : - ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection CVE-2019-14868 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid133756; scriptversion"1.5";...
Fedora 31 : 1:ksh (2020-d940aca772)
Do not evaluate arithmetic expressions from environment variables at startup Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora: Security Advisory for ksh (FEDORA-2020-a0f0eb8500)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for ksh (FEDORA-2020-d940aca772)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[ASA-202002-4] ksh: arbitrary command execution
Arch Linux Security Advisory ASA-202002-4 ========================================= Severity: High Date : 2020-02-08 CVE-ID : CVE-2019-14868 Package : ksh Type : arbitrary command execution Remote : No Link : https://security.archlinux.org/AVG-1095 Summary ======= The package ksh before version...
Arbitrary Code Execution
ksh is vulnerable to arbitrary code injection. The vulnerability exists as certain environment variables will be interpreted as arithmetic expressions on startup...
RHEL 8 : ksh (RHSA-2020:0431)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0431 advisory. KornShell ksh is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell sh and includes many features o...
Moderate: Red Hat Security Advisory: zsh security and bug fix update
An update for zsh is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
Unix Command Shell, Reverse TCP (via Ksh)
Connect back and create a command shell via Ksh. Note: Although Ksh is often available, please be aware it isn't usually installed by default. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule...
[SECURITY] Fedora 27 Update: zsh-5.4.1-3.fc27
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...
OracleVM 3.3 / 3.4 : coreutils (OVMSA-2017-0052)
The remote OracleVM system is missing necessary patches to address critical security updates : - clean up empty file if cp is failed Orabug 15973168 - pure rebuild to bring back support for aclextendedfilenofollow on x8664 - su: deny killing other processes with root privileges CVE-2017-2616 - fi...
KasperskyOS — Secure Operating System released for IoT and Embedded Systems
Russian cyber security and antivirus vendor Kaspersky Lab has made available the much awaited KasperskyOS, a secure-by-design operating system based on Microkernel architecture which is specially designed for network devices, industrial control systems and the Internet of Things. The operating...
UBUNTU-CVE-2012-0097
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect confidentiality via unknown vectors related to ksh93 Shell...
Solaris 9 (x86) : 114343-16
SunOS 5.9x86: ksh patch. Date this patch was last updated by Sun : Apr/21/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...