25 matches found
EUVD-2006-1252
Malware in sbrugna...
Huawei EulerOS: Security Advisory for shadow (EulerOS-SA-2022-2666)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2022-13489 · Gogs · Gogs
Name of the Vulnerable Software and Affected Versions: gogs versions prior to 0.12.5 Description: The issue concerns improper authorization handling in installations that use PAM as authentication sources. Expired PAM accounts and accounts with expired passwords are continued to be seen as valid...
Linux: Home directory for root user
The password file stores information about users such like username, UID, GID, etc. This script tests, if home directories for users are located in /home. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/...
Security update for mysql-community-server (important)
mysql-community-server was updated to 5.6.34 to fix the following issues: Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-34.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-33.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-32.html...
openSUSE Security Update : mysql-community-server (openSUSE-2016-1283)
mysql-community-server was updated to 5.6.34 to fix the following issues : - Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6- 34.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6- 33.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6- 32.html...
[SECURITY] Fedora 20 Update: accountsservice-0.6.35-1.fc20
The accountsservice project provides a set of D-Bus interfaces for querying and manipulating user account information and an implementation of these interfaces, based on the useradd, usermod and userdel commands...
Oracle Linux 5 : kernel (ELSA-2009-1670)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-1670 advisory. - nfs v4: fix setting lock on open file with no state Jeff Layton 533114 533115 CVE-2009-3726 - drm r128: check for init on all ioctls that require it...
Fedora 15 : nagios-3.3.1-3.fc15 (2012-1583)
Move the nagios-common's usermod line to the main nagios package Add php to the requirements list Update to version 3.3.1. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Solaris 9 (x86) : 116015-06
SunOS 5.9x86: /usr/sbin/usermod patch. Date this patch was last updated by Sun : Mar/18/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
FreeBSD setusercontext()函数绕过安全限制漏洞
BUGTRAQ ID: 42533 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 在以其他用户的权限运行时lib/libutil/loginclass.c文件中的setusercontext函数应用了特定的用户设置,这允许本地用户通过创建特制的/.loginconf文件并通过OpenSSH登录更改某些受限制的资源。 FreeBSD 8.0 FreeBSD 7.2 厂商补丁: FreeBSD ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Gentoo Security Advisory GLSA 200710-25 (mldonkey)
The remote host is missing updates announced in advisory GLSA 200710-25. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MLDonkey: Privilege escalation
Background MLDonkey is a peer-to-peer filesharing client that connects to several different peer-to-peer networks, including Overnet and BitTorrent. Description The Gentoo MLDonkey ebuild adds a user to the system named "p2p" so that the MLDonkey service can run under a user with low privileges...
HP-UX PHCO_34764 : HP-UX usermod(1M) Local Unauthorized Access. (HPSBUX02102 SSRT051078 rev.4)
s700800 11.23 ugm cumulative patch : A vulnerability has been identified with certain versions of the HP-UX usermod1M command. A certain combination of options can result in recursively changing the ownership of all directories and files under a user's new home directory. This may result in...
HP-UX PHCO_34763 : HP-UX usermod(1M) Local Unauthorized Access. (HPSBUX02102 SSRT051078 rev.4)
s700800 11.00 user/groupadd/mod/del1M cumulative patch : A vulnerability has been identified with certain versions of the HP-UX usermod1M command. A certain combination of options can result in recursively changing the ownership of all directories and files under a user's new home directory. This...
HP-UX usermod file ownership change
usermod -d dir -u new uid -m username command causes username to became owner for dir directory recursively...
[security bulletin] HPSBUX02102 SSRT051078 rev.4 - HP-UX usermod(1M) Local Unauthorized Access.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00614838 Version: 4 HPSBUX02102 SSRT051078 rev.4 - HP-UX usermod1M Local Unauthorized Access. NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release...
Novell Identity Manager - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/19688/info Novell Identity Manager is prone to an arbitrary command-execution vulnerability. A local attacker can exploit this issue to execute arbitrary commands with superuser privileges. Exploiting this issue allows attackers to completely compromise...
[security bulletin] HPSBUX02102 SSRT051078 rev.2 - HP-UX usermod(1M) Local Unauthorized Access.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00614838 Version: 2 HPSBUX02102 SSRT051078 rev.2 - HP-UX usermod1M Local Unauthorized Access. NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release...
Multiple HP-UX vulnerabilities
It's possible to change file permissions recursively with 'usermod'. DoS with 'passwd'...