Lucene search
K

61 matches found

Prion
Prion
added 2008/06/11 1:32 a.m.15 views

Design/Logic Flaw

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS7.6AI score0.00525EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2008/06/11 1:0 a.m.44 views

CVE-2008-2230

Untrusted search path vulnerability in (1) reportbug 3.8 and 3.31, and (2) reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory. Root cause: untrusted module loading path. Affected components: reportbug and rep...

4.6CVSS7.1AI score0.00525EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2008/06/11 1:0 a.m.18 views

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

7.1AI score0.00525EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2008/06/11 1:0 a.m.19 views

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

4.6CVSS7AI score0.00525EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.18 views

Ubuntu 4.10 : reportbug information disclosure (USN-88-1)

Rolf Leggewie discovered two information disclosure bugs in reportbug. The per-user configuration file /.reportbugrc was created world-readable. If it contained email smarthost passwords, these were readable by any other user on the computer storing the home directory. reportbug usually includes...

5.6AI score
Exploits0
Cvelist
Cvelist
added 2005/03/02 5:0 a.m.20 views

CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

6.2AI score0.0042EPSS
Exploits0References6
Cvelist
Cvelist
added 2005/03/02 5:0 a.m.23 views

CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

6.2AI score0.00364EPSS
Exploits0References5
CVE
CVE
added 2005/03/02 5:0 a.m.59 views

CVE-2005-0625

CVE-2005-0625 affects reportbug 3.2, where settings from .reportbugrc are included in bug reports, exposing sensitive data such as smtpuser and smtppasswd. The underlying issue is the unintended leakage of stored mail credentials via bug reports. The impact is credential exposure; the available s...

2.1CVSS6.2AI score0.0042EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2005/03/02 5:0 a.m.63 views

CVE-2005-0624

CVE-2005-0624 affects reportbug before 2.62; .reportbugrc is created with world‑readable permissions, allowing local users to obtain email smarthost passwords. Impact: partial confidentiality; exploit requires local access. NVD metrics show LOW severity (AV:L, AC:L, AU:N). The provided documents ...

2.1CVSS6.2AI score0.00364EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2005/03/02 5:0 a.m.30 views

CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

2.1CVSS6AI score0.00364EPSS
Exploits0
Debian CVE
Debian CVE
added 2005/03/02 5:0 a.m.24 views

CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

2.1CVSS6.2AI score0.0042EPSS
Exploits0
Ubuntu
Ubuntu
added 2005/02/28 9:52 p.m.39 views

USN-88-1: reportbug information disclosure

Rolf Leggewie discovered two information disclosure bugs in reportbug. The per-user configuration file /.reportbugrc was created world-readable. If it contained email smarthost passwords, these were readable by any other user on the computer storing the home directory. reportbug usually includes...

5.4AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2005/02/28 5:0 a.m.35 views

CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

2.1CVSS5.9AI score0.00364EPSS
Exploits0References1
NVD
NVD
added 2005/02/28 5:0 a.m.17 views

CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

2.1CVSS6.2AI score0.00364EPSS
Exploits0References5
OSV
OSV
added 2005/02/28 5:0 a.m.3 views

DEBIAN-CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

2.1CVSS6.5AI score0.00364EPSS
Exploits0References1
OSV
OSV
added 2005/02/28 5:0 a.m.9 views

CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

6.5AI score
Exploits0References7
OSV
OSV
added 2005/02/28 5:0 a.m.9 views

CVE-2005-0624

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords...

6.5AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2005/02/28 5:0 a.m.24 views

CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

2.1CVSS5.9AI score0.0042EPSS
Exploits0References1
NVD
NVD
added 2005/02/28 5:0 a.m.14 views

CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

2.1CVSS6.2AI score0.0042EPSS
Exploits0References6
OSV
OSV
added 2005/02/28 5:0 a.m.2 views

DEBIAN-CVE-2005-0625

reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd...

2.1CVSS6.7AI score0.0042EPSS
Exploits0References1
Rows per page
Query Builder