Lucene search
K

80 matches found

CVE
CVE
added 2017/11/06 11:0 p.m.49 views

CVE-2017-16638

CVE-2017-16638 affects Gentoo net-misc/vde up to version 2.3.2-r4. A privilege-escalation exists where members of the qemu group can gain root privileges by a hard link operation in a directory on which the OpenRC init script calls chown recursively. The issue is fixed by upgrading to >= net-m...

10CVSS9.5AI score0.01354EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/02/21 12:0 a.m.22 views

GLSA-201702-19 : TigerVNC: Buffer overflow

The remote host is affected by the vulnerability described in GLSA-201702-19 TigerVNC: Buffer overflow A buffer overflow vulnerability in ModifiablePixelBuffer::fillRect in vncviewer was found. Impact : A remote attacker, utilizing a malicious VNC server, could execute arbitrary code with the...

9.8CVSS8.7AI score0.04247EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2015/12/20 12:0 a.m.72 views

OpenSSH: Multiple vulnerabilities

Background OpenSSH is a complete SSH protocol implementation that includes an SFTP client and server support. Description Multiple vulnerabilities have been discovered in OpenSSH. Please review the CVE identifiers referenced below for details. Impact Workaround There is no known workaround at thi...

8.5CVSS8.3AI score0.09302EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2015/09/24 12:0 a.m.51 views

NTP: Multiple vulnerablities

Background NTP contains software for the Network Time Protocol. Description Multiple vulnerabilities have been discovered in NTP. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or...

5.3CVSS8.2AI score0.04095EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/07/06 12:0 a.m.37 views

GLSA-201507-01 : chrony: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201507-01 chrony: Multiple vulnerabilities Multiple vulnerabilities have been discovered in chrony. Please review the CVE identifiers referenced below for details. Impact : A remote attacker can cause arbitrary remote code executi...

6.5CVSS8AI score0.03439EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2014/12/26 12:0 a.m.34 views

OpenVPN: Denial of service

Background OpenVPN is a multi-platform, full-featured SSL VPN solution. Description OpenVPN does not properly handle control channel packets that are too small. Impact A remote authenticated attacker could send a specially crafted control channel packet, possibly resulting in a Denial of Service...

6.8CVSS6.2AI score0.03478EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/11/05 12:0 a.m.30 views

TigerVNC: User-assisted execution of arbitrary code

Background TigerVNC is a high-performance VNC server/client. Description Two boundary errors in TigerVNC could lead to a heap-based buffer overflow. Impact A remote attacker could entice a user to connect to a malicious VNC server using TigerVNC, possibly resulting in execution of arbitrary code...

9.8CVSS9.5AI score0.02494EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2014/06/22 12:0 a.m.32 views

cURL: Multiple vulnerabilities

Background cURL is a command line tool for transferring files with URL syntax, supporting numerous protocols. Description Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause a man-in-the-middle...

6.4CVSS6.9AI score0.0508EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/02/06 12:0 a.m.24 views

stunnel: Arbitrary code execution

Background The stunnel program is designed to work as an SSL encryption wrapper between a client and a local or remote server. Description A buffer overflow vulnerability has been discovered in stunnel. Please review the CVE identifier referenced below for details. Impact A remote attacker could...

6.6CVSS7.2AI score0.02932EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/01/18 12:0 a.m.27 views

Openswan: User-assisted execution of arbitrary code

Background Openswan is an implementation of IPsec for Linux. Description A buffer overflow flaw has been discovered in Openswan when using Opportunistic Encryption. Impact A remote attacker could send a specially crafted DNS TXT record, possibly resulting in execution of arbitrary code with the...

6.8CVSS7.4AI score0.02427EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/10/11 12:0 a.m.31 views

GLSA-201310-08 : Quagga: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201310-08 Quagga: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Quagga. Please review the CVE identifiers referenced below for details. Impact : A remote attacker may be able to cause arbitrary code...

5CVSS8.3AI score0.03493EPSS
Exploits1References6
Gentoo Linux
Gentoo Linux
added 2013/09/26 12:0 a.m.34 views

Dropbear: Multiple vulnerabilities

Background Dropbear is an SSH server and client designed with a small memory footprint. Description Multiple vulnerabilities have been discovered in Dropbear. Please review the CVE identifier and Gentoo bug referenced below for details. Impact A remote attacker could send a specially crafted...

7.1CVSS10AI score0.06489EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2013/01/09 12:0 a.m.42 views

ISC DHCP: Denial of service

Background ISC DHCP is a Dynamic Host Configuration Protocol DHCP client/server. Description Multiple vulnerabilities have been discovered in ISC DHCP. Please review the CVE identifiers referenced below for details. Impact The vulnerabilities might allow remote attackers to execute arbitrary code...

7.8CVSS8AI score0.84292EPSS
Exploits7
OpenVAS
OpenVAS
added 2012/10/03 12:0 a.m.18 views

Gentoo Security Advisory GLSA 201209-15 (asterisk)

The remote host is missing updates announced in advisory GLSA 201209-15. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

9CVSS6.4AI score0.03558EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2012/08/14 12:0 a.m.26 views

socat: Arbitrary code execution

Background socat is a multipurpose bidirectional relay, similar to netcat. Description A vulnerability in the "xioscanreadline" function in xio-readline.c could cause a heap-based buffer overflow. Impact A remote attacker could possibly execute arbitrary code with the privileges of the socat...

6.2CVSS7.4AI score0.00455EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/08/10 12:0 a.m.24 views

Gentoo Security Advisory GLSA 201206-08 (wicd)

The remote host is missing updates announced in advisory GLSA 201206-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

6.9CVSS0.7AI score0.00802EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2012/06/21 12:0 a.m.31 views

Wicd: Multiple vulnerabilities

Background Wicd is an open source wired and wireless network manager for Linux. Description Two vulnerabilities have been found in Wicd: Passwords and passphrases are written to /var/log/wicd CVE-2012-0813. Input from the daemon's D-Bus interface is not properly sanitized CVE-2012-2095. Impact A...

6.9CVSS6.8AI score0.00802EPSS
Exploits2
OpenVAS
OpenVAS
added 2012/04/30 12:0 a.m.27 views

Gentoo Security Advisory GLSA 201203-13 (Openswan)

The remote host is missing updates announced in advisory GLSA 201203-13. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

4CVSS6.4AI score0.02086EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/02/12 12:0 a.m.20 views

Gentoo Security Advisory GLSA 201201-07 (NX Server NX Node)

The remote host is missing updates announced in advisory GLSA 201201-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.2CVSS0.4AI score0.00364EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/02/12 12:0 a.m.16 views

Gentoo Security Advisory GLSA 201111-08 (radvd)

The remote host is missing updates announced in advisory GLSA 201111-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.5AI score0.03962EPSS
Exploits0
Rows per page
Query Builder