Fedora Update for sudo FEDORA-2016-d25ebba412

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 23 Update: sudo-1.8.15-2.fc23

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

Solaris 10 (x86) : 152255-01 (deprecated)

SunOS 5.10x86: sudo Source Patch. Date this patch was last updated by Sun : Apr/20/16 This plugin has been deprecated and either replaced with individual 152255 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on...

Chuckle - An Automated SMB Relay Script

Chuckle is an automated SMB Relay Script. Chuckle requires a few tools to work: SMBRelayX.py Veil latest version from git Responder Chuckle will detect which version you are using. Nmap Nbtscan unixwiz MSFconsole Usuage should be fairly simple, run as root or use sudo: sudo ./chuckle.sh Wait a...

VMware ESX Multiple Vulnerabilities (VMSA-2010-0015) (remote check)

The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Berkeley DB NSS module - cURL / libcURL - GnuTLS - Network Security Services...

VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0001) (remote check)

The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including arbitrary code execution vulnerabilities, in several third-party components and libraries : - glibc - glibc-common - nscd - openldap - sudo %NASLMINLEVEL 70300 C Tenab...

Fedora 22 : sudo-1.8.15-1.fc22 (2015-6a267387c0)

sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

Fedora 23 : sudo-1.8.15-1.fc23 (2015-386863df8a)

sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

VMware ESX sudo Package Multiple Vulnerabilities (VMSA-2013-0007) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities in the bundled version of sudo : - An unspecified flaw exists in the sudo package related to the Network Matching Mechanism that is triggered when parsing IPv4 netmask...

Schneider Electric SBO AS - Multiple Vulnerabilities

Schneider Electric SBO AS - Multiple Vulnerabilities Exploit Title: Schneider Electric SBO / AS Multiple Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.schneider-electric.com Versions Reported: Automation Server Series AS, AS-P, v1.7 and prior CVE-ID: CVE-2016-2278 About...

VMware ESX Multiple Vulnerabilities (VMSA-2009-0009) (remote check)

The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in sudo in file parse.c due to a failure to properly interpret a system group %group in the sudoers configuration file when handling authorization decisions for...

Centreon 2.5.3 - Remote Command Execution

Centreon 2.5.3 - Remote Command Execution Unauthenticated Remote Command Execution in Centreon Web Interface ================================================================== Description =========== Centreon is a popular monitoring solution. A critical vulnerability has been found in the Centreo...

Critical glibc Flaw Puts Linux Machines and Apps at Risk (Patch Immediately)

A highly critical vulnerability has been uncovered in the GNU C Library glibc, a key component of most Linux distributions, that leaves nearly all Linux machines, thousands of apps and electronic devices vulnerable to hackers that can take full control over them. Just clicking on a link or...

glibc - getaddrinfo Stack Based Buffer Overflow (1)

Exploit for linux platform in category dos / poc Sources: https://googleonlinesecurity.blogspot.sg/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html https://github.com/fjserna/CVE-2015-7547 Technical information: glibc reserves 2048 bytes in the stack through alloca for the DNS answer at...

glibc - 'getaddrinfo' Stack Buffer Overflow (PoC)

Sources: https://googleonlinesecurity.blogspot.sg/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html https://github.com/fjserna/CVE-2015-7547 Technical information: glibc reserves 2048 bytes in the stack through alloca for the DNS answer at nssdnsgethostbyname4r for hosting responses to a DNS...

Debian DSA-3440-1 : sudo - security update

When sudo is configured to allow a user to edit files under a directory that they can already write to without using sudo, they can actually edit read and write arbitrary files. Daniel Svartman reported that a configuration like this might be introduced unintentionally if the editable files are...

[SECURITY] [DSA 3440-1] sudo security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3440-1 [email protected] https://www.debian.org/security/ Ben Hutchings January 11, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DLA 382-1] sudo security update

Package : sudo Version : 1.7.4p4-2.squeeze.6 CVE ID : CVE-2015-5602 Debian Bug : 804149 When sudo is configured to allow a user to edit files under a directory that they can already write to without using sudo, they can actually edit read and write arbitrary files. Daniel...

Debian Security Advisory DSA 3440-1 (sudo - security update)

When sudo is configured to allow a user to edit files under a directory that they can already write to without using sudo, they can actually edit read and write arbitrary files. Daniel Svartman reported that a configuration like this might be introduced unintentionally if the editable files are...

DSA-3440-1 sudo - security update

Bulletin has no description...