30 matches found
EUVD-2018-1835
Malware in sbrugna...
EUVD-2005-0991
Malware in sbrugna...
SUSE CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
Sharutils sharutils (unshar command) version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function looks_like_c_code. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack appear to be exploitable via Victim have to run unshar command on a specially crafted file..
...
[SECURITY] [DSA 4167-1] sharutils security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4167-1 [email protected] https://www.debian.org/security/ Luciano Bello April 05, 2018 https://www.debian.org/security/faq -...
CVE-2018-1000097
A heap-based out-of-bounds read flaw was found in the way Sharutils parsed archive files. An attacker could potentially use this flaw to crash Unshar by tricking it into processing crafted archive files...
CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
AZL-6876 CVE-2018-1000097 affecting package sharutils for versions less than 4.15.2-20
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
DEBIAN-CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
AZL-35251 CVE-2018-1000097 affecting package sharutils for versions less than 4.15.2-21
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
CVE-2018-1000097
CVE-2018-1000097 affects Sharutils’ unshar utility. The buffer-overflow vulnerability in unshar.c (line 75, looks_like_c_code) allows an attacker-controlled input file to cause arbitrary code execution or crash. Debian reports fixes: 4.15.2-2+deb9u1 for Stretch (stable) and 4.14-2+deb8u1 for olds...
CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
UBUNTU-CVE-2018-1000097
Sharutils sharutils unshar command version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function lookslikeccode. Failure to perform checking of the buffer containing input line. that can result in Could lead to code execution. This attack...
Fedora 26 : sharutils (2018-4e657bf5e3)
This release fixes a heap buffer overflow when processing a shar archive by unshar tool if the arhive contains overlong lines. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...
[SECURITY] Fedora 27 Update: sharutils-4.15.2-8.fc27
The sharutils package contains the GNU shar utilities, a set of tools for encoding and decoding packages of files in binary or text format in a special plain text format called shell archives shar. This format can be sent through e-mail which can be problematic for regular binary files. T he shar...
Gentoo Security Advisory GLSA 200504-06 (sharutils)
The remote host is missing updates announced in advisory GLSA 200504-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Ubuntu 4.10 : sharutils vulnerability (USN-104-1)
Joey Hess discovered that 'unshar' created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. Note that Tenable Network Security has extracted the preceding description block...
FreeBSD : sharutils -- unshar insecure temporary file creation (5f003a08-ba3c-11d9-837d-000e0c2e438a)
An Ubuntu Advisory reports : Joey Hess discovered that 'unshar' created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...