Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2008-1926
HistoryApr 24, 2008 - 12:00 a.m.

CVE-2008-1926

2008-04-2400:00:00
ubuntu.com
ubuntu.com
8

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.2%

JSON

Argument injection vulnerability in login (login-utils/login.c) in
util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide
activities by modifying portions of log events, as demonstrated by
appending an β€œaddr=” statement to the login name, aka β€œaudit log
injection.”

Bugs

Notes

Author Note
mdeslaur this is the CVE-2007-3102 issue from openssh marking not-affected as we don’t use login from the util-linux package. It’s not compiled.

Related

nessus 21
veracode 2
openvas 10
prion 2
fedora 2
centos 3
f5 2
seebug 1
cve 2
debiancve 2
redhat 5
oraclelinux 5
ubuntucve 1
nessus
nessus
Mandriva Linux Security Advisory : util-linux-ng (MDVSA-2008:114)
2009-04-23 00:00:00
RHEL 4 : util-linux (RHSA-2009:0981)
2009-05-19 00:00:00
Fedora 8 : util-linux-ng-2.13.1-2.fc8 (2008-3419)
2008-05-01 00:00:00
veracode
veracode
Log Injection
2020-04-10 00:33:10
Authorization Bypass
2020-04-10 00:14:51
openvas
openvas
RedHat Security Advisory RHSA-2009:0981
2009-05-20 00:00:00
Fedora Update for util-linux-ng FEDORA-2008-3419
2009-02-17 00:00:00
Mandriva Update for util-linux-ng MDVSA-2008:114 (util-linux-ng)
2009-04-09 00:00:00
prion
prion
Design/Logic Flaw
2008-04-24 05:05:00
Design/Logic Flaw
2007-10-18 20:17:00
fedora
fedora
[SECURITY] Fedora 8 Update: util-linux-ng-2.13.1-2.fc8
2008-04-29 21:01:18
[SECURITY] Fedora Core 6 Update: openssh-4.3p2-25.fc6
2007-10-15 19:54:28
centos
centos
util security update
2009-05-21 14:46:18
pam security update
2007-11-15 17:15:52
openssh security update
2007-11-15 15:52:23
f5
f5
SOL15155 - OpenSSH vulnerability CVE-2007-3102
2014-04-10 00:00:00
K15155 : OpenSSH vulnerability CVE-2007-3102
2014-04-10 00:00:00
seebug
seebug
util-linux-ngη™»ε½•θΏœη¨‹ζ—₯志注ε…₯漏洞
2008-04-30 00:00:00
cve
cve
CVE-2007-3102
2007-10-18 20:17:00
CVE-2008-1926
2008-04-24 05:05:00
debiancve
debiancve
CVE-2007-3102
2007-10-18 20:17:00
CVE-2008-1926
2008-04-24 05:05:00
redhat
redhat
(RHSA-2009:0981) Low: util-linux security and bug fix update
2009-05-18 00:00:00
(RHSA-2007:0703) Moderate: openssh security and bug fix update
2007-11-15 00:00:00
(RHSA-2007:0737) Moderate: pam security, bug fix, and enhancement update
2007-11-15 00:00:00
oraclelinux
oraclelinux
util-linux security and bug fix update
2009-05-26 00:00:00
pam security, bug fix, and enhancement update
2007-11-19 00:00:00
pam security, bug fix, and enhancement update
2007-11-27 00:00:00
ubuntucve
ubuntucve
CVE-2007-3102
2007-10-18 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.2%

JSON
Related for UB:CVE-2008-1926
nessus21veracode2openvas10prion2fedora2centos3f52seebug1cve2debiancve2redhat5oraclelinux5ubuntucve1