Lucene search
K

439 matches found

securityvulns
securityvulns
added 2011/12/19 12:0 a.m.28 views

[ MDVSA-2011:185 ] libcap

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:185 http://www.mandriva.com/security/ Package : libcap Date : December 12, 2011 Affected: 2010.1, 2011., Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and corrected in libcap...

4.6CVSS6AI score0.00379EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/12/16 12:0 a.m.18 views

Mandriva Update for libcap MDVSA-2011:185 (libcap)

Check for the Version of libcap OpenVAS Vulnerability Test Mandriva Update for libcap MDVSA-2011:185 libcap Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

4.6CVSS0.00379EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/12/16 12:0 a.m.20 views

Mandriva Update for libcap MDVSA-2011:185 (libcap)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.6CVSS5.2AI score0.00379EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2011/12/14 12:0 a.m.19 views

libcap security and bug fix update

2.16-5.5 - remove some obsolete parameters from capsh manpage 2.16-5.4 - add capsh manpage 730957 2.16-5.3 - make sure to chdir '/' after calling chroot http://cwe.mitre.org/data/definitions/243.html...

4.6CVSS0.9AI score0.00379EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.15 views

Mandriva Linux Security Advisory : libcap (MDVSA-2011:185)

A vulnerability has been discovered and corrected in libcap : capsh did not chdir/ after calling chroot. Programs could therefore access the current directory outside of the chroot CVE-2011-4099. The updated packages have been patched to correct this issue. %NASLMINLEVEL 70300 C Tenable Network...

4.6CVSS5.2AI score0.00379EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2011/12/06 12:0 a.m.27 views

RHEL 6 : libcap (RHSA-2011:1694)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1694 advisory. The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root...

4.6CVSS5.6AI score0.00379EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2011/12/05 7:52 p.m.21 views

Low: Red Hat Security Advisory: libcap security and bug fix update

Updated libcap packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

4.6CVSS5.8AI score0.00379EPSS
Exploits0References3
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.105 views

[SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)

CVE-2011-2729: Commons Daemon fails to drop capabilities Apache Tomcat Severity: Important Vendor: The Apache Software Foundation Versions Affected: Tomcat 7.0.0 to 7.0.19 Tomcat 6.0.30 to 6.0.32 Tomcat 5.5.32 to 5.5.33 Description: Due to a bug in the capabilities code, jsvc the service wrapper...

5CVSS1.8AI score0.07243EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/08/12 12:0 a.m.8 views

Fedora Update for libcap FEDORA-2011-9844

Check for the Version of libcap OpenVAS Vulnerability Test Fedora Update for libcap FEDORA-2011-9844 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Exploits0References2
OpenVAS
OpenVAS
added 2011/08/12 12:0 a.m.11 views

Fedora Update for libcap FEDORA-2011-9844

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2011/08/08 12:0 a.m.15 views

Fedora 15 : libcap-2.22-1.fc15 (2011-9844)

Update to libcap-2.22, includes fixes for http://cwe.mitre.org/data/definitions/243.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

5.4AI score
Exploits0References3
Fedora
Fedora
added 2011/08/05 11:55 p.m.15 views

[SECURITY] Fedora 15 Update: libcap-2.22-1.fc15

libcap is a library for getting and setting POSIX.1e formerly POSIX 6 draft 15 capabilities...

2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/04/14 12:0 a.m.12 views

MDVA-2010:117 : flashplayer

Dependency problems was discovered on Mandriva Linux 2009.0 Powerpack x8664 which prevented the flashplayer and libsmbclient0 packages to install smoothly using MandrivaUpdate. This advisory provides the missing packages. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the...

7AI score
Exploits0References1
seebug.org
seebug.org
added 2010/03/14 12:0 a.m.59 views

Samba CAP_DAC_OVERRIDE文件权限绕过安全限制漏洞

BUGTRAQ ID: 38606 CVE ID: CVE-2010-0728 Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。 如果启用了libcap支持,则所有的smbd进程都继承了CAPDACOVERRIDE功能标记,这允许通过认证的远程用户通过标准的文件系统操作绕过预期的文件权限限制读写访问文件。 Samba Samba 3.5.0 Samba Samba 3.4.6 Samba Samba 3.3.11 厂商补丁: Samba ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

8.5CVSS7.5AI score0.03845EPSS
Exploits1
OSV
OSV
added 2010/03/10 8:13 p.m.1 views

DEBIAN-CVE-2010-0728

smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAPDACOVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client...

8.5CVSS8.2AI score0.03845EPSS
Exploits1References1
Prion
Prion
added 2010/03/10 8:13 p.m.19 views

Input validation

smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAPDACOVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client...

8.5CVSS6.6AI score0.03845EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2010/03/09 7:0 p.m.83 views

CVE-2010-0728

CVE-2010-0728 concerns: in Samba, the smbd service runs with CAP_DAC_OVERRIDE when libcap support is enabled in Samba 3.3.11, 3.4.6, and 3.5.0, enabling remote authenticated users to bypass file permissions via standard filesystem operations. The connected documents confirm this exact root cause ...

8.5CVSS6.1AI score0.03845EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.30 views

Mandriva Linux Security Advisory : wireshark (MDVSA-2008:001-1)

A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or arbitrary code execution. This update provides Wireshark 0.99.7 which is not vulnerable to these issues. An updated version of libsmi is also being provided, not because of security...

10CVSS5.8AI score0.06981EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.22 views

Mandriva Update for wireshark MDVSA-2008:001-1 (wireshark)

Check for the Version of wireshark OpenVAS Vulnerability Test Mandriva Update for wireshark MDVSA-2008:001-1 wireshark Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

10CVSS0.2AI score0.06981EPSS
Exploits0References2
Rows per page
Query Builder