1 results (0.001 seconds)
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2017-7480 – Gentoo Linux Security Advisory 201805-11
https://notcve.org/view.php?id=CVE-2017-7480
21 Jul 2017 — rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution. rkhunter versiones anteriores a 1.4.4, es vulnerable a descargar archivos en canales no seguros cuando se realiza una actualización espejo, resultando en una potencial ejecución de código remota. A vulnerability has been found in Rootkit Hunter that allows a remote attacker to execute arbitrary code. Versions less than 1.4.6 are affected. • http://seclists.org/oss-sec/2017/q2/643 • CWE-300: Channel Accessible by Non-Endpoint CWE-417: Communication Channel Errors •