4336 matches found
CVE-2008-0386
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...
CVE-2008-0386
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...
CVE-2008-0386
CVE-2008-0386 affects xdg-utils
CVE-2008-0386
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...
CVE-2008-0386
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...
GLSA-200801-21 : Xdg-Utils: Arbitrary command execution
The remote host is affected by the vulnerability described in GLSA-200801-21 Xdg-Utils: Arbitrary command execution Miroslav Lichvar discovered that the 'xdg-open' and 'xdg-email' shell scripts do not properly sanitize their input before processing it. Impact : A remote attacker could entice a us...
xdg-utils shell characters vulnerability
Shell characteres vulnerability on invoking external application by URI...
[ GLSA 200801-21 ] Xdg-Utils: Arbitrary command execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200801-21 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
Xdg-Utils: Arbitrary command execution
Background Xdg-Utils is a set of tools allowing all applications to easily integrate with the Free Desktop configuration. Description Miroslav Lichvar discovered that the "xdg-open" and "xdg-email" shell scripts do not properly sanitize their input before processing it. Impact A remote attacker...
CVE-2008-0448
PHP remote file inclusion vulnerability in utils/classHTTPRetriever.php in phpSearch allows remote attackers to execute arbitrary PHP code via a URL in the libcurlemuinc parameter...
Debian Security Advisory DSA 1449-1 (loop-aes-utils)
The remote host is missing an update to loop-aes-utils announced via advisory DSA 1449-1. OpenVAS Vulnerability Test $Id: deb14491.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1449-1 loop-aes-utils Authors: Thomas Reinke Copyright: Copyright c 2008 E-Sof...
Debian Security Advisory DSA 825-1 (loop-aes-utils)
The remote host is missing an update to loop-aes-utils announced via advisory DSA 825-1. David Watson discoverd a bug in mount as provided by util-linux and other packages such as loop-aes-utils that allows local users to bypass filesystem access restrictions by re-mounting it read-only. The old...
Debian Security Advisory DSA 782-1 (bluez-utils)
The remote host is missing an update to bluez-utils announced via advisory DSA 782-1. Henryk Plötz discovered a vulnerability in bluez-utils, tools and daemons for Bluetooth. Due to missing input sanitising it is possible for an attacker to execute arbitrary commands supplied as device name from...
Debian Security Advisory DSA 606-1 (nfs-utils)
The remote host is missing an update to nfs-utils announced via advisory DSA 606-1. OpenVAS Vulnerability Test $Id: deb6061.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 606-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 1395-1 (xen-utils)
The remote host is missing an update to xen-utils announced via advisory DSA 1395-1. OpenVAS Vulnerability Test $Id: deb13951.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1395-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 256-1 (mhc)
The remote host is missing an update to mhc announced via advisory DSA 256-1. OpenVAS Vulnerability Test $Id: deb2561.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 256-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 349-1 (nfs-utils)
The remote host is missing an update to nfs-utils announced via advisory DSA 349-1. OpenVAS Vulnerability Test $Id: deb3491.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 349-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 717-1 (lsh-utils)
The remote host is missing an update to lsh-utils announced via advisory DSA 717-1. OpenVAS Vulnerability Test $Id: deb7171.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 717-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 956-1 (lsh-utils)
The remote host is missing an update to lsh-utils announced via advisory DSA 956-1. Stefan Pfetzing discovered that lshd, a Secure Shell v2 SSH2 protocol server, leaks a couple of file descriptors, related to the randomness generator, to user shells which are started by lshd. A local attacker can...
Debian Security Advisory DSA 606-1 (nfs-utils)
The remote host is missing an update to nfs-utils announced via advisory DSA 606-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...