EUVD-2013-4258

Malware in sbrugna...

EUVD-2013-7149

Malware in sbrugna...

Gentoo Security Advisory GLSA 201405-26

Gentoo Linux Local Security Checks GLSA 201405-26 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

CVE-2013-7383

x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks...

Design/Logic Flaw

x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks...

CVE-2013-7383

CVE-2013-7383 affects X2Go Server. The vulnerability allows a local/privilege escalation for remote authenticated users via unspecified vectors (possibly related to backticks) in versions prior to 4.0.0.8 and 4.0.1.x before 4.0.1.10. The issue has a CVSSv2 base score of 9.0 (HIGH). Gentoo GLSA 20...

CVE-2013-7383

x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks...

CVE-2013-7383

x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks...

GLSA-201405-26 : X2Go Server: Privilege Escalation

The remote host is affected by the vulnerability described in GLSA-201405-26 X2Go Server: Privilege Escalation X2Go Server is prone to a local privilege-escalation vulnerability. Impact : A local attacker could gain escalated privileges. Workaround : There is no known workaround at this time...

X2Go Server: Privilege Escalation

Background X2Go is an open source terminal server project. Description X2Go Server is prone to a local privilege-escalation vulnerability. Impact A local attacker could gain escalated privileges. Workaround There is no known workaround at this time. Resolution All X2Go Server users should upgrade...

Fedora Update for x2goserver FEDORA-2014-0202

Check for the Version of x2goserver OpenVAS Vulnerability Test Fedora Update for x2goserver FEDORA-2014-0202 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora 20 : x2goserver-4.0.1.10-1.fc20 (2014-0202)

This release pulls in all changes that got introduced in the Baikal LTS release 4.0.0.8, including a severe vulnerability in x2gocleansessions. Gains of the LTS version 4.0.0.8 of x2goserver are : o Improve parsing of the NX session.log file. Fix session suspending/resuming when in fails in some...

CVE-2013-4376

The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl...

Path traversal

The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl...

CVE-2013-4376

The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl...

CVE-2013-4376

CVE-2013-4376 affects X2Go Server prior to 4.0.0.2 via the setgid wrapper x2gosqlitewrapper.c, which does not hardcode an internal path to x2gosqlitewrapper.pl, enabling a remote attacker to execute arbitrary code with the server process user privileges. Public advisories (Mageia/MGASA, Mandriva ...

CVE-2013-4376

The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl...

GLSA-201310-19 : X2Go Server: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201310-19 X2Go Server: Arbitrary code execution A vulnerability in the setgid wrapper x2gosqlitewrapper.c does not hardcode an internal path to x2gosqlitewrapper.pl, allowing a remote attacker to change that path. Impact : A remot...