Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:6 a.m.3 views

SUSE CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS7.3AI score0.00433EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/03/30 12:0 a.m.4 views

valgrind: .valgrindrc loaded from untrusted locations

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS6AI score0.00433EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.24 views

openSUSE Security Update : valgrind (valgrind-321)

valgrind reads a file .valgrindrc in the current directory. Therefore local users could place such a file a world-writable directory such as /tmp and influence other users' valgrind when it's executed there CVE-2008-4865. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

7.2CVSS5.3AI score0.00433EPSS
Exploits0References2
OSV
OSV
added 2008/11/01 12:0 a.m.2 views

DEBIAN-CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS7.2AI score0.00433EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2008/10/31 10:0 p.m.28 views

CVE-2008-4865

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE i...

7.2CVSS5.2AI score0.00433EPSS
Exploits0
Rows per page
Query Builder