Lucene search
+L

151 matches found

OSV
OSV
added 2017/11/24 5:29 a.m.7 views

DEBIAN-CVE-2017-16933

etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2USER account for creation of a link...

7CVSS7.1AI score0.00305EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2017/11/24 5:0 a.m.46 views

CVE-2017-16933

etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2USER account for creation of a link...

7CVSS7.3AI score0.00305EPSS
Exploits1
Cvelist
Cvelist
added 2017/11/24 5:0 a.m.30 views

CVE-2017-16933

etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2USER account for creation of a link...

7.3AI score0.00305EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2017/11/13 12:0 a.m.50 views

GLSA-201711-04 : MariaDB, MySQL: Root privilege escalation

The remote host is affected by the vulnerability described in GLSA-201711-04 MariaDB, MySQL: Root privilege escalation The Gentoo installation scripts before 2017-09-29 have chown calls for user-writable directory trees, which allows local users to gain privileges by leveraging access to the mysq...

7.8CVSS7.5AI score0.00366EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2017/11/10 12:0 a.m.35 views

MariaDB, MySQL: Root privilege escalation

Background MySQL is a popular multi-threaded, multi-user SQL server. MariaDB is an enhanced, drop-in replacement for MySQL. Description The Gentoo installation scripts before 2017-09-29 have chown calls for user-writable directory trees, which allows local users to gain privileges by leveraging...

7.8CVSS7.9AI score0.00366EPSS
Exploits0
OSV
OSV
added 2017/10/27 9:29 p.m.18 views

CVE-2017-15945

The installation scripts in the Gentoo dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/mysql-cluster, and dev-db/mariadb-galera packages before 2017-09-29 have chown calls for user-writable directory trees, which allows local users to gain privileges by leveraging access to the mysql...

7.8CVSS6.9AI score
Exploits0References2
Cvelist
Cvelist
added 2017/10/27 9:0 p.m.88 views

CVE-2017-15945

The installation scripts in the Gentoo dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/mysql-cluster, and dev-db/mariadb-galera packages before 2017-09-29 have chown calls for user-writable directory trees, which allows local users to gain privileges by leveraging access to the mysql...

7.7AI score0.00366EPSS
Exploits0References2
0day.today
0day.today
added 2017/03/29 12:0 a.m.60 views

Ubuntu 15.04 (Dev) - Upstart Logrotation Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits Source: http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ Introduction Problem description: Ubuntu Vivid 1504 development branch installs an insecure upstart logrotation script which will read user-supplied data from...

7.2CVSS6.4AI score0.01015EPSS
Exploits2
exploitpack
exploitpack
added 2016/11/22 12:0 a.m.19 views

Ubuntu 14.0415.10 - User Namespace Overlayfs Xattr SetGID Privilege Escalation

Ubuntu 14.0415.10 - User Namespace Overlayfs Xattr SetGID Privilege Escalation Source: http://www.halfdog.net/Security/2016/UserNamespaceOverlayfsXattrSetgidPrivilegeEscalation/ Introduction Problem description: Linux user namespace allows to mount file systems as normal user, including the...

0.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/11/19 2:41 a.m.4 views

binutils: directory traversal vulnerability

A directory traversal flaw was found in the strip and objcopy utilities. A specially crafted file could cause strip or objdump to overwrite an arbitrary file writable by the user running either of these utilities...

3.6CVSS7.4AI score0.0104EPSS
Exploits1References4
0day.today
0day.today
added 2015/08/21 12:0 a.m.56 views

Mozilla Maintenance Service Log File Overwrite Elevation of Privilege Exploit

Exploit for windows platform in category local exploits Source: https://code.google.com/p/google-security-research/issues/detail?id=427&can=1 Mozilla Maintenance Service: Log File Overwrite Elevation of Privilege Platform: Windows Version: Mozilla Firefox 38.0.5 Class: Elevation of Privilege...

3.3CVSS9AI score0.00797EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2015/06/11 1:21 p.m.6 views

jar: directory traversal vulnerability

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5CVSS5.8AI score0.06717EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/05/20 7:5 p.m.5 views

jar: directory traversal vulnerability

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5CVSS5.8AI score0.06717EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/05/20 7:5 p.m.12 views

OpenJDK: jar directory traversal issues (Tools, 8064601)

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5.8CVSS6.7AI score0.03608EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/05/20 6:36 p.m.6 views

jar: directory traversal vulnerability

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5CVSS5.8AI score0.06717EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/05/20 6:36 p.m.7 views

OpenJDK: jar directory traversal issues (Tools, 8064601)

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5.8CVSS6.7AI score0.03608EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/05/13 1:34 p.m.6 views

jar: directory traversal vulnerability

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5CVSS5.8AI score0.06717EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/05/13 1:34 p.m.11 views

OpenJDK: jar directory traversal issues (Tools, 8064601)

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5.8CVSS6.7AI score0.03608EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/05/13 1:33 p.m.8 views

OpenJDK: jar directory traversal issues (Tools, 8064601)

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5.8CVSS6.7AI score0.03608EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/04/20 2:27 p.m.5 views

jar: directory traversal vulnerability

A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...

5CVSS5.8AI score0.06717EPSS
Exploits1References4
Rows per page
Query Builder