15 matches found
EUVD-2015-2383
Malware in sbrugna...
CVE-2025-53881
A UNIX Symbolic Link Symlink Following vulnerability in logrotate config in the exim package allowed privilege escalation from mail user/group to root.This issue affects Tumbleweed: from ? before 4.98.2-lp156.248.1...
CVE-2015-2285
The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...
SUSE-SU-2022:2713-1 Security update for bind
This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance bsc1192146. - CVE-2021-25220: Fixed potentially incorrect answers by cached forwarders bsc1197135. - CVE-2022-0396: Fixed a incorrect handling of...
Nginx (Debian Based Distros + Gentoo) - logrotate Local Privilege Escalation
Nginx Debian Based Distros + Gentoo - logrotate Local Privilege Escalation !/bin/bash Nginx Debian-based distros + Gentoo - Root Privilege Escalation PoC Exploit nginxed-root.sh ver. 1.0 CVE-2016-1247 Discovered and coded by: Dawid Golunski dawidatlegalhackers.com https://legalhackers.com Follow...
Ubuntu Vivid logrotation script local elevation of privilege vulnerability
Ubuntu Vivid is a linux-based distribution. A security vulnerability in the logrotation script /etc/cron.daily/upstart in Ubuntu Vivid Ubuntu Upstart allows local attackers to execute commands with elevated privileges...
CVE-2015-2285
The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...
CVE-2015-2285
The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...
Command injection
The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...
Ubuntu 15.04 (Development) - 'Upstart' Logrotation Privilege Escalation
Source: http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ Introduction Problem description: Ubuntu Vivid 1504 development branch installs an insecure upstart logrotation script which will read user-supplied data from /run/user/uid/upstart/sessions and pass then unsanitiz...
Ubuntu 15.04 (Development) - Upstart Logrotation Privilege Escalation
Ubuntu 15.04 Development - Upstart Logrotation Privilege Escalation Source: http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ Introduction Problem description: Ubuntu Vivid 1504 development branch installs an insecure upstart logrotation script which will read...
Ubuntu Vivid Logrotation Script Local Elevation of Privilege Vulnerability
Ubuntu is a desktop-oriented GNU/Linux operating system developed by Canonical and the Ubuntu Foundation.Vivid is a development code name for Ubuntu. Ubuntu Vivid suffers from a local exploit. This vulnerability can be exploited by a local attacker to execute arbitrary commands with root privileg...
Mandriva Update for mailman MDVA-2010:212 (mailman)
Check for the Version of mailman OpenVAS Vulnerability Test Mandriva Update for mailman MDVA-2010:212 mailman Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Mandriva Update for mailman MDVA-2010:212 (mailman)
Check for the Version of mailman OpenVAS Vulnerability Test Mandriva Update for mailman MDVA-2010:212 mailman Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
MDVA-2010:212 : mailman
The install of mailman failed because of a problem in the rpm scripts, additionally the logrotation script was fixed. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc...