Lucene search
+L

34 matches found

Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.25 views

Ubuntu 10.10 : language-selector vulnerability (USN-1115-1)

Romain Perier discovered that the language-selector D-Bus backend did not correctly check for Policy Kit authorizations. A local attacker could exploit this to inject shell commands into the system-wide locale configuration file, leading to root privilege escalation. Note that Tenable Network...

7.2CVSS5.5AI score0.00439EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2011/05/10 12:0 a.m.33 views

Ubuntu Update for language-selector USN-1115-1

Ubuntu Update for Linux kernel vulnerabilities USN-1115-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11151.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for language-selector USN-1115-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

7.2CVSS6.6AI score0.00333EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/05/10 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-1115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.6AI score0.00439EPSS
Exploits1References2
NVD
NVD
added 2011/05/03 12:55 a.m.24 views

CVE-2011-1842

dbusbackend/lsd.py in the D-Bus backend in language-selector before 0.6.7 does not validate the arguments to the 1 SetSystemDefaultLangEnv and 2 SetSystemDefaultLanguageEnv functions, which allows local users to gain privileges via shell metacharacters in a string argument, a different...

7.2CVSS6.3AI score0.00439EPSS
Exploits1References8
Prion
Prion
added 2011/05/03 12:55 a.m.19 views

Design/Logic Flaw

dbusbackend/lsd.py in the D-Bus backend in language-selector before 0.6.7 does not validate the arguments to the 1 SetSystemDefaultLangEnv and 2 SetSystemDefaultLanguageEnv functions, which allows local users to gain privileges via shell metacharacters in a string argument, a different...

7.2CVSS7AI score0.00439EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2011/05/03 12:3 a.m.28 views

CVE-2011-1842

dbusbackend/lsd.py in the D-Bus backend in language-selector before 0.6.7 does not validate the arguments to the 1 SetSystemDefaultLangEnv and 2 SetSystemDefaultLanguageEnv functions, which allows local users to gain privileges via shell metacharacters in a string argument, a different...

6.2AI score0.00439EPSS
Exploits1References8
CVE
CVE
added 2011/05/03 12:3 a.m.56 views

CVE-2011-1842

CVE-2011-1842 affects the language-selector D-Bus backend (dbus_backend/lsd.py) where SetSystemDefaultLangEnv and SetSystemDefaultLanguageEnv do not validate shell-containing arguments, enabling local privilege escalation. The issue is tied to the same underlying flaw as CVE-2011-0729 (policykit ...

7.2CVSS6.4AI score0.00439EPSS
Exploits1References8Affected Software1
Prion
Prion
added 2011/04/29 10:55 p.m.21 views

Design/Logic Flaw

dbusbackend/ls-dbus-backend in the D-Bus backend in language-selector before 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a 1 SetSystemDefaultLangEnv or 2...

7.2CVSS6.3AI score0.00333EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2011/04/29 10:55 p.m.20 views

CVE-2011-0729

dbusbackend/ls-dbus-backend in the D-Bus backend in language-selector before 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a 1 SetSystemDefaultLangEnv or 2...

7.2CVSS6AI score0.00333EPSS
Exploits0References7
Cvelist
Cvelist
added 2011/04/29 10:0 p.m.30 views

CVE-2011-0729

dbusbackend/ls-dbus-backend in the D-Bus backend in language-selector before 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a 1 SetSystemDefaultLangEnv or 2...

5.8AI score0.00333EPSS
Exploits0References7
CVE
CVE
added 2011/04/29 10:0 p.m.57 views

CVE-2011-0729

CVE-2011-0729 affects the language-selector D-Bus backend (dbus_backend/ls-dbus-backend) in versions before 0.6.7. The component does not restrict access based on PolicyKit checks, allowing a local user to modify /etc/default/locale and /etc/environment via (1) SetSystemDefaultLangEnv or (2) SetS...

7.2CVSS6AI score0.00333EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2011/04/21 12:0 a.m.63 views

[USN-1115-1] language-selector vulnerability

========================================================================== Ubuntu Security Notice USN-1115-1 April 19, 2011 language-selector vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

7.2CVSS0.8AI score0.00333EPSS
Exploits0
Ubuntu
Ubuntu
added 2011/04/19 6:7 p.m.62 views

USN-1115-1: language-selector vulnerability

Romain Perier discovered that the language-selector D-Bus backend did not correctly check for Policy Kit authorizations. A local attacker could exploit this to inject shell commands into the system-wide locale configuration file, leading to root privilege escalation...

7.2CVSS5.4AI score0.00439EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2011/04/19 12:0 a.m.28 views

CVE-2011-1842

dbusbackend/lsd.py in the D-Bus backend in language-selector before 0.6.7 does not validate the arguments to the 1 SetSystemDefaultLangEnv and 2 SetSystemDefaultLanguageEnv functions, which allows local users to gain privileges via shell metacharacters in a string argument, a different...

7.2CVSS5.9AI score0.00439EPSS
Exploits1References2
Rows per page
Query Builder