SUSE: Security Advisory (SUSE-SU-2016:0092-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OracleVM 3.3 / 3.4 : foomatic (OVMSA-2016-0040)

The remote OracleVM system is missing necessary patches to address critical security updates : - Also consider back tick and semicolon as illegal shell escape characters. - CVE-2015-8327, CVE-2015-8560 - Prevent foomatic-rip overrun bug 1214534. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

openSUSE Security Update : cups-filters (openSUSE-2016-67)

This update fixes the following security issue : CVE-2015-8327 adds backtick and semicolon to the list of illegal shell escape characters bsc957531. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

SUSE SLED11 / SLES11 Security Update : foomatic-filters (SUSE-SU-2016:0112-1)

This update fixes the following security issues : - CVE-2015-8327: adds backtick and semicolon to the list of illegal shell escape characters bsc957531. CVE-2015-8560: fixed code execution via improper escaping of ; bsc957531. Note that Tenable Network Security has extracted the preceding...

SUSE-SU-2016:0092-1 Security update for cups-filters

This update fixes the following security issue: CVE-2015-8327 adds backtick and semicolon to the list of illegal shell escape characters bsc957531...

Ubuntu: Security Advisory (USN-2838-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2831-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-2831-1: cups-filters vulnerability

Michal Kowalczyk discovered that the cups-filters foomatic-rip filter incorrectly stripped shell escape characters. A remote attacker could possibly use this issue to execute arbitrary code as the lp user...

Debian Security Advisory DSA 292-1 (mime-support)

The remote host is missing an update to mime-support announced via advisory DSA 292-1. OpenVAS Vulnerability Test $Id: deb2921.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 292-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Open WebMail Shell Escape Arbitrary Command Execution

According to its banner, the version of Open WebMail installed on the remote host may allow execution of arbitrary shell commands due to its failure to ensure shell escape characters are removed from filenames and other strings before trying to read from them. %NASLMINLEVEL 70300 C Tenable Networ...