CVSS: 7.5EPSS: 1%CPEs: 58EXPL: 4CVE-2011-1659 – glibc: fnmatch() alloca()-based memory corruption flaw
https://notcve.org/view.php?id=CVE-2011-1659
08 Apr 2011 — Integer overflow in posix/fnmatch.c in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long UTF8 string that is used in an fnmatch call with a crafted pattern argument, a different vulnerability than CVE-2011-1071. Desbordamiento de enteros en posix/fnmatch.c en la biblioteca de C de GNU (también conocida como glibc o libc6) v2.13 y anteriores, permite a atacantes dependientes del contexto causar una denegación... • http://code.google.com/p/chromium/issues/detail?id=48733 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 0%CPEs: 58EXPL: 0CVE-2011-1658 – glibc: ld.so insecure handling of privileged programs' RPATHs with $ORIGIN
https://notcve.org/view.php?id=CVE-2011-1658
08 Apr 2011 — ld.so in the GNU C Library (aka glibc or libc6) 2.13 and earlier expands the $ORIGIN dynamic string token when RPATH is composed entirely of this token, which might allow local users to gain privileges by creating a hard link in an arbitrary directory to a (1) setuid or (2) setgid program with this RPATH value, and then executing the program with a crafted value for the LD_PRELOAD environment variable, a different vulnerability than CVE-2010-3847 and CVE-2011-0536. NOTE: it is not expected that any standard... • http://secunia.com/advisories/46397 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 12CVE-2009-5064 – glibc: ldd unexpected code execution issue
https://notcve.org/view.php?id=CVE-2009-5064
30 Mar 2011 — ldd in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LD_TRACE_LOADED_OBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion other ways to introduce code if people are downloading arbitrary binaries and install them in appropriate directories or set LD_LIBRARY_PATH etc. **DISPUTADA** ldd en la Biblioteca de C de GNU (también conocida ... • http://openwall.com/lists/oss-security/2011/03/07/10 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2010-4651 – Ubuntu Security Notice USN-2651-1
https://notcve.org/view.php?id=CVE-2010-4651
11 Mar 2011 — Directory traversal vulnerability in util.c in GNU patch 2.6.1 and earlier allows user-assisted remote attackers to create or overwrite arbitrary files via a filename that is specified with a .. (dot dot) or full pathname, a related issue to CVE-2010-1679. Vulnerabilidad de salto de directorio en util.c en el parche GNU v2.6.1 y anteriores, permite a atacantes remotos asistidos por el usuario crear o sobreescribir archivos de su elección a través de un nombre de archivo que se especifica con un .. (punto pu... • http://git.savannah.gnu.org/cgit/patch.git/commit/?id=685a78b6052f4df6eac6d625a545cfb54a6ac0e1 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 3CVE-2010-4756
https://notcve.org/view.php?id=CVE-2010-4756
02 Mar 2011 — The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632. La implementación de glob en la librería de C de GNU (también conocido como glibc o libc6) permite a usuarios remotos autenticados causar una denegación de servicio (por CPU y... • http://cxib.net/stuff/glob-0day.c • CWE-399: Resource Management Errors •
CVSS: 6.1EPSS: 0%CPEs: 45EXPL: 0CVE-2011-0707 – Mailman: Three XSS flaws due improper escaping of the full name of the member
https://notcve.org/view.php?id=CVE-2011-0707
22 Feb 2011 — Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message. Múltiples vulnerabilidades de ejecución de comandos en sitios cruzados(XSS) en CGI/confirm.py en GNU Mailman v2.1.14 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del campo (1) nombre completo o (2) nombre de usuario en un mensa... • http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4337
https://notcve.org/view.php?id=CVE-2010-4337
14 Jan 2011 — The configure script in gnash 0.8.8 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/gnash-configure-errors.$$, (2) /tmp/gnash-configure-warnings.$$, or (3) /tmp/gnash-configure-recommended.$$ files. El script de configuración en gnash v0.8.8 permite a usuarios locales sobreescribir ficheros de su elección mediante un ataque de enlace simbólico en ficheros (1) /tmp/gnash-configure-errores.$$, (2) /tmp/gnash-configure-warnings.$$ o (3) /tmp/gnash-configure.$$ • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605419 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 11%CPEs: 28EXPL: 9CVE-2010-4052 – GNU glibc - 'regcomp()' Stack Exhaustion Denial of Service
https://notcve.org/view.php?id=CVE-2010-4052
13 Jan 2011 — Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (resource exhaustion) via a regular expression containing adjacent repetition operators, as demonstrated by a {10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD. Vulnerabilidad de lconsumo de pila de memoria en la aplicación regcomp en la Biblioteca de C de GNU (también conocido c... • https://packetstorm.news/files/id/125725 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 5%CPEs: 28EXPL: 8CVE-2010-4051 – GNU libc/regcomp - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2010-4051
13 Jan 2011 — The regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (application crash) via a regular expression containing adjacent bounded repetitions that bypass the intended RE_DUP_MAX limitation, as demonstrated by a {10,}{10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD, related to a "RE_DUP_MAX overflow." La implementación de regcomp en la librería de C de GNU (también cono... • https://packetstorm.news/files/id/125725 •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 9CVE-2010-3847 – glibc - '$ORIGIN' Expansion Privilege Escalation
https://notcve.org/view.php?id=CVE-2010-3847
07 Jan 2011 — elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object (DSO) located in an arbitrary directory. elf/dl-load.c de ld.so en la Biblioteca GNU C (también conocida como glibc o libc6) hasta v2.11.2, y v2.12.x hasta v2.12.1 no maneja adecuadamente un valor de $ORIGIN de la variable de entorno LD_AUDI... • https://packetstorm.news/files/id/146337 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-426: Untrusted Search Path •