31 matches found
EUVD-2016-7788
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-6902
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands. CVE-2016-6902 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2016-6903
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands. CVE-2016-6903 Note that Nessus relies on the...
SUSE CVE-2016-6902
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
SUSE CVE-2016-6903
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
Mageia: Security Advisory (MGASA-2017-0126)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD : lshell -- Shell autocomplete reveals forbidden directories (07d04eef-d8e2-11e6-a071-001e67f15f5a)
lshell reports : The autocomplete feature allows users to list directories, while they do not have access to those paths issue 109. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques...
FreeBSD : lshell -- Multiple security issues (f353525a-d8b8-11e6-a071-001e67f15f5a)
lshell reports : It is possible to escape lshell if an allowed command can execute an arbitrary non allowed one issue 122. Inappropriate parsing of commands can lead to arbitrary command execution issue 147, 149, 151. C Tenable Network Security, Inc. The descriptive text and package checks in thi...
Updated python-lshell package fixes security vulnerabilities
Shell outbreak due to bad syntax parse CVE-2016-6902. Shell outbreak with multiline commands CVE-2016-6903...
MGASA-2017-0126 Updated python-lshell package fixes security vulnerabilities
Shell outbreak due to bad syntax parse CVE-2016-6902. Shell outbreak with multiline commands CVE-2016-6903...
Command injection
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6903
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6902
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
Command injection
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
UBUNTU-CVE-2016-6903
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
UBUNTU-CVE-2016-6902
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6902
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6903
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6902
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands...
CVE-2016-6903
CVE-2016-6903 affects lshell 0.9.16, allowing remote authenticated users to break out of a restricted shell and execute arbitrary commands. Related advisories note a shell outbreak with multiline commands (CVE-2016-6903). Mitigation observed in Mageia (MGASA-2017-0126) and Ubuntu/OpenVAS entries ...