CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

seebug.org•added 2008/07/16 12:0 a.m.•24 views

GNU make /tmp 漏洞

GNU make处理通过标准输入提供的makefile内容时存在一个漏洞。GNU make没有检查这些文件是否存在或是这些文件是否是符号连接，就在/tmp目录下创建文件，攻击者可以简单的创建一个指向系统其他文件的符号连接。攻击者可以以运行make用户的身份创建文件，如果这个用户是root，将会获得root权限。 GNU make 3.77-44 S.u.S.E. Linux 6.3 S.u.S.E. Linux 6.1 SuSE已经发布补丁程序： ftp://ftp.suse.com/pub/suse/i386/update for Intel processors...

7.1AI score

Exploits0

CVE•added 2000/10/13 4:0 a.m.•53 views

CVE-2000-0340

Affected software: Gnomelib on SuSE Linux 6.3. Vulnerability: buffer overflow in Gnomelib that allows local users to execute arbitrary commands via the DISPLAY environment variable. Root cause: buffer overflow; Impact: local arbitrary command execution. Remediation: no patch/version details provi...

7.2CVSS7.8AI score0.00628EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by