CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-0012

Malware in sbrugna...

5.5CVSS5.3AI score0.00054EPSS

Exploits0References7

Packet Storm•added 2016/11/04 12:0 a.m.•64 views

AIX 5.3 / 6.1 / 7.1 / 7.2 lquerylv Local Root

!/usr/bin/sh AIX lquerylv 5.3, 6.1, 7.1, 7.2 local root exploit. Tested against latest patchset 7100-04 This exploit takes advantage of known issues with debugging functions within the AIX linker library. We are taking advantage of known functionality, and focusing on badly coded SUID binaries...

7.2CVSS0.2AI score0.00159EPSS

Exploits10

Debian CVE•added 2015/02/13 3:0 p.m.•28 views

CVE-2013-2027

Jython 2.2.1 uses the current umask to set the privileges of the class cache files, which allows local users to bypass intended access restrictions via unspecified vectors...

4.6CVSS8.9AI score0.00021EPSS

Exploits0

OSV•added 2014/11/16 1:59 a.m.•3 views

CVE-2014-3209

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file...

5.8AI score

Exploits0References5

securityvulns•added 2014/02/03 12:0 a.m.•84 views

[ MDVSA-2014:021 ] perl-Proc-Daemon

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:021 http://www.mandriva.com/en/support/security/ Package : perl-Proc-Daemon Date : January 24, 2014 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated perl-Proc-Daemon package...

7.2CVSS6.1AI score0.00036EPSS

Exploits0

Cvelist•added 2012/08/29 10:0 p.m.•22 views

CVE-2011-4578

event.c in acpid aka acpid2 before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to 1 perform write operations within directories created by a script, or 2 read files created by a script, via standard filesystem system...

6AI score0.00078EPSS

Exploits0References5

Tenable Nessus•added 2006/01/15 12:0 a.m.•27 views

Ubuntu 4.10 : cpio vulnerability (USN-75-1)

Recently it was discovered that cpio created world-writeable files when used in -o/--create mode with giving an output file with -O. This allowed any user to modify the created cpio archives. Now cpio respects the current umask setting of the user. Note: This vulnerability has already been fixed ...

2.1CVSS5.4AI score0.00139EPSS

Exploits1References1

Tenable Nessus•added 2006/01/15 12:0 a.m.•19 views

Mandrake Linux Security Advisory : fetchmail (MDKSA-2005:209)

Thomas Wolff and Miloslav Trmac discovered a race condition in the fetchmailconf program. fetchmailconf would create the initial output configuration file with insecure permissions and only after writing would it change permissions to be more restrictive. During that time, passwords and other dat...

5CVSS5.5AI score0.06437EPSS

Exploits1References2

Ubuntu•added 2005/11/08 1:26 a.m.•42 views

USN-215-1: fetchmailconf vulnerability

Thomas Wolff and Miloslav Trmac discovered a race condition in the fetchmailconf program. The output configuration file was initially created with insecure permissions, and secure permissions were applied after writing the configuration into the file. During this time, the file was world readable...

2.1CVSS5.2AI score0.00093EPSS

Exploits0

Ubuntu•added 2005/02/04 7:23 p.m.•60 views

USN-75-1: cpio vulnerability

2.1CVSS5.2AI score0.00139EPSS

Exploits1

NVD•added 2002/12/31 5:0 a.m.•10 views

CVE-2002-1786

SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, which allows local users to read the core dumps and possibly obtain sensitive information...

2.1CVSS6.2AI score0.00144EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by