Lucene search
K

6 matches found

Exploit DB
Exploit DB
added 2018/08/31 12:0 a.m.58 views

Network Manager VPNC 1.2.6 - 'Username' Local Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Network Manager VPNC Username Privilege Escalation', 'Description' = %q This module exploits an injection vulnerability in the Network Manager VP...

8.8CVSS7.8AI score0.05059EPSS
Exploits7
Metasploit
Metasploit
added 2018/08/19 8:15 a.m.136 views

Network Manager VPNC Username Privilege Escalation

This module exploits an injection vulnerability in the Network Manager VPNC plugin to gain root privileges. This module uses a new line injection vulnerability in the configured username for a VPN network connection to inject a Password helper configuration directive into the connection...

7.8CVSS0.4AI score0.05059EPSS
Exploits7
OSV
OSV
added 2018/07/26 3:29 p.m.1 views

DEBIAN-CVE-2018-10900

Network Manager VPNC plugin aka networkmanager-vpnc before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root...

7.8CVSS7.9AI score0.05059EPSS
Exploits7References1
UbuntuCve
UbuntuCve
added 2018/07/26 3:29 p.m.22 views

CVE-2018-10900

Network Manager VPNC plugin aka networkmanager-vpnc before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root...

8.8CVSS7.4AI score0.05059EPSS
Exploits7References3
OSV
OSV
added 2018/07/26 3:29 p.m.1 views

UBUNTU-CVE-2018-10900

Network Manager VPNC plugin aka networkmanager-vpnc before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root...

8.8CVSS6.1AI score0.05059EPSS
Exploits7References4
CNVD
CNVD
added 2018/07/24 12:0 a.m.5 views

Network Manager VPNC Elevation of Privilege Vulnerability

Network Manager VPNC plugin networkmanager-vpnc is a virtual network manager that supports connection to Cisco VPN. A security vulnerability exists in the Network Manager VPNC plugin prior to version 1.2.6, which stems from a newline character that can be used to inject the password helper...

8.8CVSS8.4AI score0.05059EPSS
Exploits7References1
Rows per page
Query Builder