289 matches found
Directory traversal
monero-wallet-gui in Monero GUI before 0.17.1.0 includes the . directory in an embedded RPATH with a preference ahead of /usr/lib, which allows local users to gain privileges via a Trojan horse library in the current working directory...
CVE-2020-26947
monero-wallet-gui in Monero GUI before 0.17.1.0 includes the . directory in an embedded RPATH with a preference ahead of /usr/lib, which allows local users to gain privileges via a Trojan horse library in the current working directory...
OPENSUSE-SU-2020:1270-1 Security update for gettext-runtime
This update for gettext-runtime fixes the following issues: - Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 - Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 - Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of...
SUSE SLED15 / SLES15 Security Update : gettext-runtime (SUSE-SU-2020:2296-1)
This update for gettext-runtime fixes the following issues : Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of messa...
HP Performance Monitoring xglance Privilege Escalation Exploit
This Metasploit module is an exploit that takes advantage of xglance-bin, part of HP's Glance or Performance Monitoring version 11 and subsequent, which was compiled with an insecure RPATH option. The RPATH includes a relative path to -L/lib64/ which can be controlled by a user. Creating librarie...
HP Performance Monitoring xglance Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Performance Monitoring xglance Priv Esc', 'Description' = %q This exploit takes advantage of xglance-bin, part of HP's Glance or Performance...
Arbitrary Code Execution
ibutils is vulnerable to arbitrary code execution. The vulnerability exists as it was found that the ibmssh executable had an insecure relative RPATH runtime library search path set in the ELF Executable and Linking Format header. A local user able to convince another user to run ibmssh in an...
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2019-1371)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Code injection
Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges...
CVE-2013-7172
Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges...
CVE-2008-3278
frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f e.g. fcore, fcatch, fstack, fstep, ... shipped in the package. A local attacker can exploit this vulnerability by running arbitrary...
Design/Logic Flaw
frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f e.g. fcore, fcatch, fstack, fstep, ... shipped in the package. A local attacker can exploit this vulnerability by running arbitrary...
CVE-2008-3278
frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f e.g. fcore, fcatch, fstack, fstep, ... shipped in the package. A local attacker can exploit this vulnerability by running arbitrary...
CVE-2008-3278
The CVE-2008-3278 entry is confirmed by connected sources: frysk packages shipped in Red Hat Enterprise Linux 5 (through 2008-08-05) are built with an insecure RPATH in the ELF header of multiple /usr/bin/f* binaries (e.g., fcore, fcatch, fstack, fstep). A local attacker can exploit this to run a...
CVE-2019-4473
Multiple binaries in IBM SDK, Java Technology Edition 7, 7R, and 8 on the AIX platform use insecure absolute RPATHs, which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 163984...
CVE-2019-11771
AIX builds of Eclipse OpenJ9 before 0.15.0 contain unused RPATHs which may facilitate code injection and privilege elevation by local users...
EulerOS 2.0 SP5 : glibc (EulerOS-SA-2019-1667)
According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - elf/dl-load.c in the GNU C Library aka glibc or libc6 2.19 through 2.26 mishandles RPATH and RUNPATH containing $ORIGIN for a privileged setuid o...
Security Bulletin: Vulnerabilities in IBM Java SDK (January 2019) affecting IBM Application Delivery Intelligence for IBM Z V5.1.0, V5.0.5 and V5.0.4
Summary Multiple vulnerabilities are identified in IBM® SDK Java™ Technology Edition Version 1.7 and Version 1.8 that are used by IBM Application Delivery Intelligence for IBM Z V5.1.0, V5.0.5, and V5.0.4 respectively. These issues were disclosed as part of the IBM Java SDK updates in January 201...
EulerOS Virtualization 2.5.4 : glibc (EulerOS-SA-2019-1371)
According to the version of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - elf/dl-load.c in the GNU C Library aka glibc or libc6 2.19 through 2.26 mishandles RPATH and RUNPATH containing $ORIGIN for a...
Security Bulletin: A security vulnerability has been identified in IBM Java Runtime could affect DB2 Query Management Facility (CVE-2018-12547, CVE-2019-2426, CVE-2018-1890, CVE-2018-12549, CVE-2018-11212)
Summary An unspecified vulnerability has been identified in IBM Java Runtime that could affect Db2 Query Management Facility. Vulnerability Details CVEID: CVE-2018-12547 CVSS Base Score: 9.8 DESCRIPTION: A widely used function in the OpenJ9 JVM is vulnerable to buffer overlows. Multiple Java...