Lucene search
+L

331 matches found

Cvelist
Cvelist
added 2017/09/15 10:0 a.m.23 views

CVE-2017-14483

flower.initd in the Gentoo dev-python/flower package before 0.9.1-r1 for Celery Flower sets PID file ownership to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a...

5.5AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/09/06 8:21 a.m.38 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS4AI score0.00349EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/09/05 6:29 p.m.35 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS6.8AI score0.00349EPSS
Exploits0References1
NVD
NVD
added 2017/09/05 6:29 p.m.22 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS4.7AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2017/09/05 6:29 p.m.25 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS6.6AI score
Exploits0References2
Cvelist
Cvelist
added 2017/09/05 6:0 p.m.29 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

5AI score0.00349EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2017/09/05 6:0 p.m.75 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS5.2AI score0.00349EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/09/05 6:0 p.m.46 views

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

4.7CVSS5.6AI score0.00349EPSS
Exploits0
CVE
CVE
added 2017/09/05 6:0 p.m.133 views

CVE-2017-14159

CVE-2017-14159 affects slapd in OpenLDAP 2.4.45 and earlier: a PID file is created after dropping privileges to a non-root account, which may allow local users to kill arbitrary processes by modifying the PID file before a root script executes a kill cat /pathname command, as demonstrated by open...

4.7CVSS4.9AI score0.00349EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2017/09/01 5:29 a.m.17 views

CVE-2017-14102

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

7.8CVSS7.1AI score0.00358EPSS
Exploits0References3
Prion
Prion
added 2017/09/01 5:29 a.m.12 views

Command injection

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

4.6CVSS7.5AI score0.00358EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/09/01 5:29 a.m.6 views

CVE-2017-14102

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

7.8CVSS6.6AI score
Exploits0References2
OSV
OSV
added 2017/09/01 5:29 a.m.1 views

DEBIAN-CVE-2017-14102

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

7.8CVSS6.7AI score0.00358EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/09/01 5:0 a.m.62 views

CVE-2017-14102

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as...

7.8CVSS7.5AI score0.00358EPSS
Exploits0
CVE
CVE
added 2017/09/01 5:0 a.m.55 views

CVE-2017-14102

CVE-2017-14102 affects MIMEDefang 2.80 and earlier. The vulnerability arises when a non-root process creates a PID file after dropping privileges, which could allow a local attacker with access to the non-root account to modify the PID file and kill an arbitrary process before a root script runs ...

7.8CVSS7.3AI score0.00358EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2017/08/31 12:0 a.m.87 views

UnrealIRCd Local Privilege Escalation Vulnerability

UnrealIRCd is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.5CVSS5.7AI score0.00284EPSS
Exploits0References3
Prion
Prion
added 2017/08/23 9:29 p.m.13 views

Command injection

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command. NOTE: t...

2.1CVSS5.7AI score0.00284EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/08/23 9:29 p.m.20 views

CVE-2017-13649

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command. NOTE: t...

5.5CVSS5.7AI score0.00284EPSS
Exploits0References2
NVD
NVD
added 2017/08/23 9:29 p.m.23 views

CVE-2017-12847

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "kill cat...

6.3CVSS6.2AI score0.00786EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2017/08/23 9:29 p.m.31 views

CVE-2017-12847

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "kill cat...

6.3CVSS6.7AI score0.00786EPSS
Exploits0References2
Rows per page
Query Builder