RSS   Podatności dla 'Util-vserver'   RSS

2006-04-06
 
CVE-2006-1656

 

 
vserver in util-vserver 0.30.209 executes a command as root when the suexec userid parameter is invalid and non-numeric, which might cause local users to inadvertently execute dangerous commands as root.

 
2005-12-31
 
CVE-2005-4418

 

 
util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities.

 
 
CVE-2005-4347

CWE-Other
 

 
The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the vserver.

 

 >>> Vendor: Vserver 2 Produkty
Linux-vserver
Util-vserver


Copyright 2020, cxsecurity.com

 

Back to Top