50 matches found
EUVD-2008-4961
Malware in sbrugna...
EUVD-2017-16501
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-7480
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution...
OPENSUSE-SU-2024:11301-1 rkhunter-1.4.6-5.6 on GA media
These are all security issues fixed in the rkhunter-1.4.6-5.6 package on the GA media of openSUSE Tumbleweed...
Nysm - A Stealth Post-Exploitation Container
A stealth post-exploitation container. Introduction With the raise in popularity of offensive tools based on eBPF, going from credential stealers to rootkits hiding their own PID, a question came to our mind: Would it be possible to make eBPFinvisible in its own eyes? From there, we created nysm,...
CVE-2023-4413
DISPUTED A vulnerability was found in rkhunter Rootkit Hunter 1.4.4/1.4.6. It has been classified as problematic. Affected is an unknown function of the file /var/log/rkhunter.log. The manipulation leads to sensitive information in log files. An attack has to be approached locally. The complexity...
CVE-2023-4413
Removed by vendor...
PT-2023-29124 · Rkhunter · Rkhunter
Name of the Vulnerable Software and Affected Versions: rkhunter versions 1.4.4 through 1.4.6 Description: A vulnerability was found in the rkhunter Rootkit Hunter. The issue affects an unknown function of the file /var/log/rkhunter.log, leading to sensitive information in log files. An attack mus...
CVE-2023-4413
A vulnerability was found in rkhunter Rootkit Hunter 1.4.4/1.4.6. It has been classified as problematic. Affected is an unknown function of the file /var/log/rkhunter.log. The manipulation leads to sensitive information in log files. An attack has to be approached locally. The complexity of an...
SUSE CVE-2008-4982
rkhunter in rkhunter 1.3.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rkhunter-debug temporary file. NOTE: this is probably a different vulnerability than CVE-2005-1270...
SUSE CVE-2017-7480
rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution...
Mageia: Security Advisory (MGASA-2018-0029)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
LinuxCheck - Linux Information Collection Script
A small linux information collection script is mainly used for emergency response. It can be used under Debian or Centos. Features CPU TOP10, memory TOP10 CPU usage boot time Hard disk space information User information, passwd information Environmental variable detection Service list System...
Debian: Security Advisory (DLA-1039-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated rkhunter packages fix security vulnerability
The rkhunter package has been updated to disable by default an insecure cron job. The script is now included with the package as documentation. See the README.urpmi file for more information...
MGASA-2018-0029 Updated rkhunter packages fix security vulnerability
The rkhunter package has been updated to disable by default an insecure cron job. The script is now included with the package as documentation. See the README.urpmi file for more information...
rkhunter Remote Code Execution Vulnerability
rkhunter is a Unix-based scanning tool. The tool is used to scan for rootkits, backdoor programs, and other local vulnerabilities. A security vulnerability exists in versions of rkhunter prior to 1.4.4. A remote attacker can exploit this vulnerability to execute arbitrary code...
Debian DLA-1039-1 : rkhunter security update
CVE-2017-7480 The original patch introduces new regex to better check for allowed download URLs. Other versions of the package in Jessie, Stretch and Sid don't apply that patch but just disable the download of everything by default via rkhunter.conf. In order to make this version consistent with...
[SECURITY] [DLA 1039-1] rkhunter security update
Package : rkhunter Version : 1.4.0-1+deb7u1 CVE ID : CVE-2017-7480 CVE-2017-7480 The original patch introduces new regex to better check for allowed download URLs. Other versions of the package in Jessie, Stretch and Sid dont apply that patch but just disable the download of everything by default...
DLA-1039-1 rkhunter - security update
Bulletin has no description...