Lucene search
+L

47 matches found

ubuntucve
ubuntucve
added 2019/10/29 10:15 p.m.35 views

CVE-2010-2064

rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on 1 /tmp/portmap.xdr and 2 /tmp/rpcbind.xdr...

7.1CVSS7.1AI score0.004EPSS
Exploits0References1
nessus
nessus
added 2019/07/25 12:0 a.m.35 views

EulerOS 2.0 SP8 : dbus (EulerOS-SA-2019-1767)

According to the version of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less...

7.1CVSS7.1AI score0.00555EPSS
Exploits0References2
nessus
nessus
added 2019/07/22 12:0 a.m.31 views

EulerOS 2.0 SP2 : dbus (EulerOS-SA-2019-1727)

According to the version of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less...

7.1CVSS7.1AI score0.00555EPSS
Exploits0References2
osv
osv
added 2019/06/11 5:29 p.m.20 views

CVE-2019-12749

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

7.1CVSS6.8AI score
Exploits0References18
osv
osv
added 2019/06/11 5:29 p.m.7 views

AZL-6371 CVE-2019-12749 affecting package dbus for versions less than 1.13.6-9

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

7.1CVSS7AI score0.00555EPSS
Exploits0References1
osv
osv
added 2019/06/11 5:29 p.m.4 views

DEBIAN-CVE-2019-12749

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

7.1CVSS7.1AI score0.00555EPSS
Exploits0References1
osv
osv
added 2019/06/11 3:0 p.m.3 views

UBUNTU-CVE-2019-12749

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

7.1CVSS7.1AI score0.00555EPSS
Exploits0References4
openvas
openvas
added 2017/11/21 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-3480-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.0044EPSS
Exploits0References4
nessus
nessus
added 2017/11/21 12:0 a.m.22 views

Ubuntu 16.04 LTS : Apport regressions (USN-3480-2)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3480-2 advisory. USN-3480-1 fixed vulnerabilities in Apport. The fix for CVE-2017-14177 introduced a regression in the ability to handle crashes for users that configured their...

7.8CVSS7.4AI score0.0044EPSS
Exploits0References1
osv
osv
added 2017/11/20 11:38 p.m.7 views

USN-3480-2 apport regressions

USN-3480-1 fixed vulnerabilities in Apport. The fix for CVE-2017-14177 introduced a regression in the ability to handle crashes for users that configured their systems to use the Upstart init system in Ubuntu 16.04 LTS and Ubuntu 17.04. The fix for CVE-2017-14180 temporarily disabled crash...

7.8CVSS7.1AI score0.0044EPSS
Exploits0References3
ubuntu
ubuntu
added 2017/11/20 11:38 p.m.52 views

USN-3480-2: Apport regressions

USN-3480-1 fixed vulnerabilities in Apport. The fix for CVE-2017-14177 introduced a regression in the ability to handle crashes for users that configured their systems to use the Upstart init system in Ubuntu 16.04 LTS and Ubuntu 17.04. The fix for CVE-2017-14180 temporarily disabled crash...

7.3AI score
Exploits0References2
zdt
zdt
added 2017/03/29 12:0 a.m.60 views

Ubuntu 15.04 (Dev) - Upstart Logrotation Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits Source: http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ Introduction Problem description: Ubuntu Vivid 1504 development branch installs an insecure upstart logrotation script which will read user-supplied data from...

7.2CVSS6.4AI score0.01015EPSS
Exploits2
osv
osv
added 2017/03/24 12:0 a.m.4 views

UBUNTU-CVE-2017-6507

An issue was discovered in AppArmor before 2.12. Incorrect handling of unknown AppArmor profiles in AppArmor init scripts, upstart jobs, and/or systemd unit files allows an attacker to possibly have increased attack surfaces of processes that were intended to be confined by AppArmor. This is due ...

5.9CVSS6.5AI score0.01589EPSS
Exploits0References3
redhat
redhat
added 2016/12/21 5:15 p.m.46 views

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 1.3 security and bug fix update

An update is now available for Red Hat Ceph Storage 1.3. This erratum is for Red Hat Ceph Storage that runs on Ubuntu 14.04. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

7.5CVSS6.8AI score0.04396EPSS
Exploits1References3
packetstorm
packetstorm
added 2016/08/18 12:0 a.m.30 views

Metasploit Service Persistence Module

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Service Persistence', 'Description' = %q This module will create a service on the box, and mark it for auto-restart. We need enough access to writ...

7.4AI score
Exploits0
metasploit
metasploit
added 2016/06/22 11:22 p.m.21 views

Service Persistence

This module will create a service on the box, and mark it for auto-restart. We need enough access to write service files and potentially restart services Targets: System V: CentOS = 9, = 9.10, = 7, = 15 Ubuntu = 15.04 Note: System V won't restart the service if it dies, only an init change reboot...

7.2AI score
Exploits0
kitploit
kitploit
added 2016/02/10 10:12 p.m.28 views

SideDoor - Debian/Ubuntu Backdoor Using A Reverse SSH Tunnel

sidedoor maintains a reverse tunnel to provide a backdoor. sidedoor can be used to remotely control a device behind a NAT. sidedoor is packaged for Debian-based systems with systemd or upstart. It has been used on Debian 8 jessie and Ubuntu 14.04 LTS trusty. The sidedoor user has full root access...

7.5AI score
Exploits0References1
cnvd
cnvd
added 2015/03/17 12:0 a.m.6 views

Ubuntu Vivid logrotation script local elevation of privilege vulnerability

Ubuntu Vivid is a linux-based distribution. A security vulnerability in the logrotation script /etc/cron.daily/upstart in Ubuntu Vivid Ubuntu Upstart allows local attackers to execute commands with elevated privileges...

7.2CVSS7AI score0.01015EPSS
Exploits2References1
nvd
nvd
added 2015/03/12 2:59 p.m.16 views

CVE-2015-2285

The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...

7.2CVSS7.2AI score0.01015EPSS
Exploits2References4
ubuntucve
ubuntucve
added 2015/03/12 2:59 p.m.26 views

CVE-2015-2285

The logrotation script /etc/cron.daily/upstart in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user//upstart/sessions/...

7.2CVSS6.1AI score0.01015EPSS
Exploits2References5
Rows per page
Query Builder