Lucene search
K

110 matches found

CNVD
CNVD
added 2016/03/17 12:0 a.m.2 views

OpenSSH xauth Command Injection Vulnerability

OpenSSH is an open source implementation of the SSH protocol. OpenSSH = 7.2p1 suffers from an xauth command injection vulnerability in the implementation. An attacker can bypass security restrictions and inject shell commands into data using a valid certificate and the privilege to establish a...

6.4CVSS7.7AI score0.37016EPSS
Exploits13References1
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.1024 views

OpenSSH <=7.2p1 xauth injection

来源链接: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 VuNote Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview Name: openssh...

5.5CVSS8.1AI score0.37016EPSS
Exploits13
exploitpack
exploitpack
added 2016/03/16 12:0 a.m.605 views

OpenSSH 7.2p1 - (Authenticated) xauth Command Injection

OpenSSH 7.2p1 - Authenticated xauth Command Injection ''' Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview -------- Name: openssh Vendor:...

5.5CVSS0.2AI score0.37016EPSS
Exploits13
0day.today
0day.today
added 2016/03/16 12:0 a.m.482 views

OpenSSH 7.2p1 - Authenticated xauth Command Injection

Exploit for multiple platform in category remote exploits ''' Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview -------- Name: openssh Vendor:...

7.1AI score0.37016EPSS
Exploits13
FreeBSD Advisory
FreeBSD Advisory
added 2016/03/16 12:0 a.m.25 views

FreeBSD-SA-16:14.openssh

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:14.openssh Security Advisory The FreeBSD Project Topic: OpenSSH xauth1 command injection Category: contrib Module: OpenSSH Announced: 2016-03-16 Credits:...

6.4CVSS7.1AI score0.37016EPSS
Exploits13
Exploit DB
Exploit DB
added 2016/03/16 12:0 a.m.1334 views

OpenSSH 7.2p1 - (Authenticated) xauth Command Injection

''' Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview -------- Name: openssh Vendor: OpenBSD References: http://www.openssh.com/1 Version: 7.2...

6.4CVSS7.1AI score0.37016EPSS
Exploits13
Packet Storm
Packet Storm
added 2016/03/15 12:0 a.m.1772 views

Dropbear SSHD xauth Command Injection / Bypass

Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3116 Version: 0.2 Date: Mar 3rd, 2016 Tag: dropbearsshd xauth command injection may lead to forced-command bypass Overview -------- Name: dropbear Vendor: Matt Johnston References: https://matt.ucc.asn.au/dropbear/dropbear.ht...

5.5CVSS0.7AI score0.37016EPSS
Exploits13
Packet Storm
Packet Storm
added 2016/03/15 12:0 a.m.1039 views

OpenSSH 7.2p1 xauth Command Injection / Bypass

Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview -------- Name: openssh Vendor: OpenBSD References: http://www.openssh.com/1 Version: 7.2p1 2...

5.5CVSS0.6AI score0.37016EPSS
Exploits13
ArchLinux
ArchLinux
added 2016/03/14 12:0 a.m.71 views

dropbear: command injection

A vulnerability was found in a way dropbear processed X11 forwarding input. By using a specially crafted request, an attacker could bypass the authorizedkeys command restrictions. xauth is run under the user's privilege, so this vulnerability offers no additional access to unrestricted accounts,...

5.5CVSS6AI score0.19302EPSS
Exploits4References2
Mageia
Mageia
added 2016/03/10 11:37 p.m.52 views

Updated openssh packages fix security vulnerability

Missing sanitisation of untrusted input allows an authenticated user who is able to request X11 forwarding to inject commands to xauth1 CVE-2016-3115...

6.4CVSS3.2AI score0.37016EPSS
Exploits13References3
Hacker One
Hacker One
added 2016/03/10 5:49 p.m.33 views

Internet Bug Bounty: OpenSSH / dropbearSSHd xauth command injection

OpenSSH affects all version = 7.2p1 with X11Forwarding yes acc. to OpenSSH this bug is 20 years old and affects all versions back to openssh v1 status: fixed, vendor advisory: http://www.openssh.com/txt/x11fwd.adv dropbearSSHd affects = 2015.71 basically all versions that come with x11 support;...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2015/06/23 12:0 a.m.18 views

Cisco ASA XAUTH Bypass Vulnerability (Cisco-SA-20150602-CVE-2015-0760)

A vulnerability in IKE version 1 code of Cisco ASA Software could allow an authenticated, remote attacker to bypass Extended Authentication XAUTH and successfully log in via IPsec remote VPN. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced...

4CVSS7AI score0.02026EPSS
Exploits0References1
Prion
Prion
added 2015/06/04 10:59 a.m.16 views

Authentication flaw

The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCus47259...

4CVSS7AI score0.02026EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/06/04 10:0 a.m.59 views

CVE-2015-0760

Cisco ASA Software versions 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 contain a vulnerability in the IKEv1 code that can be exploited by an authenticated, remote attacker to bypass XAUTH authentication via crafted IKEv1 packets. The issue (Bug CSCus47259) allows bypass of Extended Authenticati...

4CVSS6.7AI score0.02026EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2015/06/02 9:27 p.m.24 views

Cisco Adaptive Security Appliance XAUTH Bypass Vulnerability

A vulnerability in Internet Key Exchange IKE version 1 v1 code of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to bypass Extended Authentication XAUTH and successfully log in via IPsec remote VPN. The vulnerability is due to improper implementation ...

4CVSS6.6AI score0.02026EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the OpenSUSE operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the xorg-x11-xauth package in the OpenSUSE operating system can lead to violations of privacy, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

9.3CVSS5.4AI score0.05781EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.3 views

Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The XFree86-xauth-4.2.1-21 package of the Red Hat Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to violations of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.5CVSS5.8AI score0.03403EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The XFree86-xauth-4.2.1 package of the Red Hat Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to violations of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

10CVSS5.5AI score0.05427EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the xorg-x11-xauth-6.8.2 package on the CentOS operating system can lead to violations of privacy, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

9.3CVSS5.4AI score0.05781EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The XFree86-xauth-4.3.0 package of the Red Hat Enterprise Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to violations of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

10CVSS7.7AI score0.03566EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder