Lucene search
+L

15 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.13 views

EUVD-2017-7851

Malware in sbrugna...

9.3CVSS7.5AI score0.01462EPSS
Exploits0References7
nessus
nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-16667

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of...

9.3CVSS7AI score0.01462EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 4:37 a.m.5 views

SUSE CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS7.1AI score0.01462EPSS
Exploits0References3
nessus
nessus
added 2018/01/08 12:0 a.m.19 views

GLSA-201801-06 : Back In Time: Command injection

The remote host is affected by the vulnerability described in GLSA-201801-06 Back In Time: Command injection Back in Time did improper escaping/quoting of file paths used as arguments to the notify-send command leading to some parts of file paths being executed as shell commands within an os.syst...

9.3CVSS7.8AI score0.01462EPSS
Exploits0References2
gentoo
gentoo
added 2018/01/07 12:0 a.m.41 views

Back In Time: Command injection

Background A simple backup tool for Linux, inspired by “flyback project”. Description ‘Back in Time’ did improper escaping/quoting of file paths used as arguments to the ‘notify-send’ command leading to some parts of file paths being executed as shell commands within an os.system call. Impact A...

9.3CVSS7.9AI score0.01462EPSS
Exploits0
nessus
nessus
added 2017/11/27 12:0 a.m.25 views

openSUSE Security Update : backintime (openSUSE-2017-1309)

This update for backintime fixes the following issues : Security issue fixed : - CVE-2017-16667: Fixed shell injection in notify-send boo1067342. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Updat...

9.3CVSS7.2AI score0.01462EPSS
Exploits0References2
attackerkb
attackerkb
added 2017/11/08 6:29 p.m.5 views

CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS5.8AI score0.01462EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2017/11/08 6:29 p.m.22 views

CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS7.2AI score0.01462EPSS
Exploits0References3
prion
prion
added 2017/11/08 6:29 p.m.14 views

Input validation

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS7.5AI score0.01462EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2017/11/08 6:29 p.m.14 views

CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS7.6AI score0.01462EPSS
Exploits0References4
osv
osv
added 2017/11/08 6:29 p.m.3 views

UBUNTU-CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

7.8CVSS5.9AI score0.01462EPSS
Exploits0References4
osv
osv
added 2017/11/08 6:29 p.m.1 views

DEBIAN-CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

7.8CVSS7.5AI score0.01462EPSS
Exploits0References1
debiancve
debiancve
added 2017/11/08 6:0 p.m.72 views

CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

9.3CVSS7.6AI score0.01462EPSS
Exploits0
cvelist
cvelist
added 2017/11/08 6:0 p.m.33 views

CVE-2017-16667

backintime aka Back in Time before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft...

7.5AI score0.01462EPSS
Exploits0References4
cve
cve
added 2017/11/08 6:0 p.m.67 views

CVE-2017-16667

CVE-2017-16667 - Summary : The Back in Time tool (backintime) prior to version 1.1.24 improperly escapes/quotes file paths passed to the notify-send command, causing parts of the path to be executed as shell commands inside an os.system call in qt4/plugins/notifyplugin.py. This enables a context-...

9.3CVSS7.4AI score0.01462EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder