3800 matches found
Ubuntu: Security Advisory (USN-637-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for util-linux vulnerability USN-533-1
Ubuntu Update for Linux kernel vulnerabilities USN-533-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5331.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for util-linux vulnerability USN-533-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
PT-2009-1126 · Vmware +3 · Open-Vm-Tools +3
Name of the Vulnerable Software and Affected Versions: open-vm-tools version 2009.03.18-154848 Description: The issue is related to the mount.vmhgfs component of the open-vm-tools package, which incorrectly handles symbolic links before accessing a file. This can allow an attacker to access...
CentOS Update for kernel CESA-2007:1104 centos4 i386
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2007:1104 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
CentOS Update for kernel CESA-2007:1104 centos4 x86_64
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2007:1104 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Linux each version of the local root password cracking method-vulnerability warning-the black bar safety net
This time the old met was asked and the various linux versions of the local root password cracking method, I here own and on the network to collect some information, we want to see this article and just used to give the art a little help: A RedHat/CentOS/Fedora system password cracking 1. In the...
CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
DEBIAN-CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
CVE-2008-5138
CVE-2008-5138 affects libpam-mount (example: version 0.43) and is triggered by a local symlink attack targeting a temporary file named /tmp/passwdehd, allowing local users to overwrite arbitrary files. The connected advisories confirm a fix implemented as a security update for pam_mount in SUSE/o...
CVE-2008-5138
passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd. temporary file...
Unfixed XSS vulnerability at www.mountsinai.org
Security researcher Mystick, has submitted on 11/11/2008 a cross-site-scripting XSS vulnerability affecting www.mountsinai.org, which at the time of submission ranked 214233 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is...
DTSA-169-1 libpam-mount - access restriction bypass
Bulletin has no description...
Linux Kernel 'truncate()'本地特权提升漏洞
BUGTRAQ ID: 31368 CVE ID:CVE-2008-4210 CNCVE ID:CNCVE-20084210 Linux是一款开放源代码的操作系统。 Linux内核'truncate'和'ftruncate'函数存在设计错误,本地攻击者可以利用漏洞提升特权。 当建立文件时,open/creat允许通过模式参数设置setgid位,由于bsdgroups mount选项或在setgid目录中建立文件,用户不属于新文件的组的成员。用户可以使用ftruncate和memory-mapped I/O使新文件成为任意两进制,获得此组的特权,原因是这些操作没有清除setgid位。...
kernel: missing check before setting mount propagation
The dochangetype function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAPSYSADMIN capability, which allows local users to gain privileges or cause a denial of service by modifying the properties of a mountpoint...
Gentoo Security Advisory GLSA 200511-17 (FUSE)
The remote host is missing updates announced in advisory GLSA 200511-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200511-17 (FUSE)
The remote host is missing updates announced in advisory GLSA 200511-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CVE-2008-3970
pammount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount...