Lucene search
K

79 matches found

BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.8 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the sup-mail package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

6.8CVSS5.4AI score0.03239EPSS
Exploits2References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/09/08 12:0 a.m.28 views

Fedora 23 : ruby-ncurses-1.3.1-16.fc23 / rubygem-sup-0.21.0-3.fc23 (2015-14929)

ruby-ncurses-1.3.1-16.fc23 - Fix Ruby 2.2 compatibility. rubygem- sup-0.21.0-3.fc23 - Relax rubygem-chronic dependency. - Temporary use ncurses, until rubygem-ncursesw is in Fedora. - Small cleanup. Note that Tenable Network Security has extracted the preceding description block directly from the...

6.8CVSS5.4AI score0.03239EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.9 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the Debian GNU/Linux operating system’s sup package can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors...

4.6CVSS5.4AI score0.00321EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2013/12/07 8:55 p.m.1 views

DEBIAN-CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS7.5AI score0.03239EPSS
Exploits1References1
NVD
NVD
added 2013/12/07 8:55 p.m.10 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS7.5AI score0.03239EPSS
Exploits1References8
NVD
NVD
added 2013/12/07 8:55 p.m.21 views

CVE-2013-4478

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

6.8CVSS7.5AI score0.02138EPSS
Exploits1References7
OSV
OSV
added 2013/12/07 8:55 p.m.8 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

7.4AI score
Exploits0References9
OSV
OSV
added 2013/12/07 8:55 p.m.3 views

UBUNTU-CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS6.1AI score0.03239EPSS
Exploits1References3
Prion
Prion
added 2013/12/07 8:55 p.m.12 views

Code injection

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS8AI score0.03239EPSS
Exploits1References8Affected Software1
UbuntuCve
UbuntuCve
added 2013/12/07 8:55 p.m.11 views

CVE-2013-4478

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

6.8CVSS6AI score0.02138EPSS
Exploits1References3
Prion
Prion
added 2013/12/07 8:55 p.m.8 views

Code injection

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

6.8CVSS8AI score0.02138EPSS
Exploits1References7Affected Software1
UbuntuCve
UbuntuCve
added 2013/12/07 8:55 p.m.14 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS6.2AI score0.03239EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2013/12/07 8:0 p.m.40 views

CVE-2013-4479

lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...

6.8CVSS8.1AI score0.03239EPSS
Exploits1
Debian CVE
Debian CVE
added 2013/12/07 8:0 p.m.16 views

CVE-2013-4478

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

6.8CVSS7.6AI score0.02138EPSS
Exploits1
Cvelist
Cvelist
added 2013/12/07 8:0 p.m.27 views

CVE-2013-4478

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

7.4AI score0.02138EPSS
Exploits1References7
securityvulns
securityvulns
added 2013/12/01 12:0 a.m.42 views

[SECURITY] [DSA 2805-1] sup-mail security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.8AI score0.03239EPSS
Exploits2
securityvulns
securityvulns
added 2013/12/01 12:0 a.m.28 views

Sup-mail commands injection

It's possible to inject commands via filename and Content-Type...

6.8CVSS4AI score0.03239EPSS
Exploits2References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/11/29 12:0 a.m.17 views

Debian DSA-2805-1 : sup-mail - command injection

joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. - CVE-2013-4478 Sup wrongly handled the filename of attachments. - CVE-2013-4479 Sup did not sanitize the...

6.8CVSS5.5AI score0.03239EPSS
Exploits2References8
Debian
Debian
added 2013/11/27 9:38 p.m.37 views

[SECURITY] [DSA 2805-1] sup-mail security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...

6.8CVSS7.2AI score0.03239EPSS
Exploits2
OSV
OSV
added 2013/11/27 12:0 a.m.20 views

DSA-2805-1 sup-mail - remote command injection

Bulletin has no description...

6.8CVSS6AI score0.03239EPSS
Exploits2
Rows per page
Query Builder