Lucene search
K

61 matches found

Debian
Debian
added 2014/08/07 5:0 p.m.57 views

[DLA 31-1] reportbug security update

Package : reportbug Version : 4.12.6+deb6u1 CVE ID : CVE-2014-0479 Fix CVE-2014-0479: Arbitrary code execution in compareversions. A man-in-the-middle attacker could put shell metacharacters in the version number, causing execution of code of their choice...

6.8CVSS6.2AI score0.02735EPSS
Exploits0
OSV
OSV
added 2014/08/07 12:0 a.m.18 views

DLA-31-1 reportbug - security update

Bulletin has no description...

6.8CVSS6.1AI score0.02735EPSS
Exploits0
OSV
OSV
added 2014/08/06 7:55 p.m.1 views

DEBIAN-CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS7.5AI score0.02735EPSS
Exploits0References1
NVD
NVD
added 2014/08/06 7:55 p.m.31 views

CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS7.4AI score0.02735EPSS
Exploits0References6
OSV
OSV
added 2014/08/06 7:55 p.m.6 views

CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

7.3AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2014/08/06 7:55 p.m.23 views

CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS6.1AI score0.02735EPSS
Exploits0References1
OSV
OSV
added 2014/08/06 7:55 p.m.7 views

UBUNTU-CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS6.1AI score0.02735EPSS
Exploits0References2
Prion
Prion
added 2014/08/06 7:55 p.m.13 views

Design/Logic Flaw

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS8AI score0.02735EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2014/08/06 7:0 p.m.88 views

CVE-2014-0479

CVE-2014-0479 affects the reportbug tool. Remote code execution is possible via vectors related to compare_versions and reportbug/checkversions.py. Debian fixed in stable at 6.4.4+deb7u1 and in later 6.5.x as 6.5.0+nmu1; other advisories reiterate upgrade to these versions. Affected software is r...

6.8CVSS7.4AI score0.02735EPSS
Exploits0References6Affected Software2
Debian CVE
Debian CVE
added 2014/08/06 7:0 p.m.24 views

CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

6.8CVSS7.3AI score0.02735EPSS
Exploits0
Cvelist
Cvelist
added 2014/08/06 7:0 p.m.28 views

CVE-2014-0479

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compareversions and reportbug/checkversions.py...

7.2AI score0.02735EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2014/08/06 12:0 a.m.28 views

Debian DSA-2997-1 : reportbug - security update

Jakub Wilk discovered a remote command execution flaw in reportbug, a tool to report bugs in the Debian distribution. A man-in-the-middle attacker could put shell metacharacters in the version number allowing arbitrary code execution with the privileges of the user running reportbug. %NASLMINLEVE...

6.8CVSS6AI score0.02735EPSS
Exploits0References3
Debian
Debian
added 2014/08/05 6:8 p.m.22 views

[SECURITY] [DSA 2997-1] reportbug security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2997-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 05, 2014 http://www.debian.org/security/faq -...

6.8CVSS2.1AI score0.02735EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/08/05 12:0 a.m.29 views

Debian Security Advisory DSA 2997-1 (reportbug - security update)

Jakub Wilk discovered a remote command execution flaw in reportbug, a tool to report bugs in the Debian distribution. A man-in-the-middle attacker could put shell metacharacters in the version number allowing arbitrary code execution with the privileges of the user running reportbug. OpenVAS...

6.8CVSS0.2AI score0.02735EPSS
Exploits0References1
OSV
OSV
added 2014/08/05 12:0 a.m.25 views

DSA-2997-1 reportbug - security update

Bulletin has no description...

6.8CVSS6.1AI score0.02735EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/08/04 12:0 a.m.26 views

Debian: Security Advisory (DSA-2997-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02735EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2008/06/11 1:32 a.m.23 views

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS6AI score0.00525EPSS
Exploits1References1
NVD
NVD
added 2008/06/11 1:32 a.m.11 views

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS7.1AI score0.00525EPSS
Exploits1References3
Prion
Prion
added 2008/06/11 1:32 a.m.15 views

Design/Logic Flaw

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS7.6AI score0.00525EPSS
Exploits1References3Affected Software2
OSV
OSV
added 2008/06/11 1:32 a.m.3 views

DEBIAN-CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS7.5AI score0.00525EPSS
Exploits1References1
Rows per page
Query Builder