CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 1CVE-2016-10729
https://notcve.org/view.php?id=CVE-2016-10729
An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command injection as root. Se ha descubierto un problema en Amanda 3.3.1. Un usuario con privilegios backup puede comprometer de forma trivial una instalación de cliente. • https://www.exploit-db.com/exploits/39217 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2009-3102
https://notcve.org/view.php?id=CVE-2009-3102
The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager (ZRM) for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQL_BINPATH variable. La subrutina soHotCopy en socket-server.pl en Zmanda Recovery Manager (ZRM) para MySQL v2.x anterior a v2.1.1, permite a atacantes remotos ejecutar comandos de su elección a través de vectores que involucran una variable $MYSQL_BINPATH manipulada. • http://forums.zmanda.com/showthread.php?p=8068 http://secunia.com/advisories/36424 http://secunia.com/advisories/36429 http://twitter.com/elegerov/statuses/3518763099 http://twitter.com/elegerov/statuses/3547652507 http://www.intevydis.com/blog/?p=51 https://exchange.xforce.ibmcloud.com/vulnerabilities/52977 https://exchange.xforce.ibmcloud.com/vulnerabilities/52978 • CWE-20: Improper Input Validation •