24 matches found
CVE-2003-0372
CVE-2003-0372 affects Nessus prior to 2.0.6, specifically the libnasl component. The root cause is a signed integer handling issue that allows a local user with plugin upload privileges to trigger a denial of service (core dump) and potentially execute arbitrary code by providing a negative argum...
CVE-2003-0374
CVE-2003-0374 describes multiple unknown vulnerabilities in Nessus before 2.0.6, in libnessus and possibly libnasl, separate from CVE-2003-0372/0373. The connected records provide concrete details for 0372 (signed integer vulnerability in libnasl allowing local privilege escalation and possible c...
Nessus 2.0.x - LibNASL Arbitrary Code Execution
Nessus 2.0.x - LibNASL Arbitrary Code Execution source: https://www.securityfocus.com/bid/7664/info Nessus has reported that various flaws have been discovered in the 'libnasl' library used by the Nessus application. As a result, a malicious NASL script may be able to break outside of the...
Nessus 2.0.x - LibNASL Arbitrary Code Execution
source: https://www.securityfocus.com/bid/7664/info Nessus has reported that various flaws have been discovered in the 'libnasl' library used by the Nessus application. As a result, a malicious NASL script may be able to break outside of the established sandbox environment and execute arbitrary...