openSUSE Security Update : cifs-utils (openSUSE-2021-639)

This update for cifs-utils fixes the following security issues : - CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issu...

CVE-2010-3037

CVE-2010-3037 affects Cisco Unified Videoconferencing (UVC) products (5110/5115 Linux; 3545, 5230 VxWorks; 3527 PRI Gateway; 3522 BRI Gateway; 3515 MCU). The flaw is a remote command-injection in the web interface via the /goform/websXMLAdminRequestCgi.cgi, allowing an authenticated administrator...

Afuse 'afuse.c' SHELL命令注入漏洞

BUGTRAQ ID: 30245 CVE ID：CVE-2008-2232 CNCVE ID：CNCVE-20082232 Afuse是一款类似autofs工具的文件系统自动挂接程序。 Afuse不正确处理命令行参数，本地攻击者可以利用漏洞以高特权执行任意命令。 afuse接收如下形式的命令行： afuse /path -o mounttemplate="mount-script %m %r" \ unmounttemplate="unmount-script %m %r"...