Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-1018
Description:logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
Test IDs: 1.3.6.1.4.1.25623.1.0.69180   1.3.6.1.4.1.25623.1.0.69135   1.3.6.1.4.1.25623.1.0.69261   1.3.6.1.4.1.25623.1.0.69260   1.3.6.1.4.1.25623.1.0.69259   1.3.6.1.4.1.25623.1.0.69622   1.3.6.1.4.1.25623.1.0.71306   1.3.6.1.4.1.25623.1.0.122228   1.3.6.1.4.1.25623.1.0.840603   1.3.6.1.4.1.25623.1.0.870409   1.3.6.1.4.1.25623.1.0.881368   1.3.6.1.4.1.25623.1.0.880540   1.3.6.1.4.1.25623.1.0.862894   1.3.6.1.4.1.25623.1.0.862901  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-1018
BugTraq ID: 46554
http://www.securityfocus.com/bid/46554
Debian Security Information: DSA-2182 (Google Search)
http://www.debian.org/security/2011/dsa-2182
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055585.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055579.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055617.html
http://sourceforge.net/mailarchive/forum.php?thread_name=4D604843.7040303%40mblmail.net&forum_name=logwatch-devel
http://www.openwall.com/lists/oss-security/2011/02/24/13
http://www.openwall.com/lists/oss-security/2011/02/24/15
RedHat Security Advisories: RHSA-2011:0324
http://www.redhat.com/support/errata/RHSA-2011-0324.html
http://www.securitytracker.com/id?1025165
http://secunia.com/advisories/43356
http://secunia.com/advisories/43495
http://secunia.com/advisories/43622
http://secunia.com/advisories/43644
http://secunia.com/advisories/43734
SuSE Security Announcement: SUSE-SR:2011:005 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://www.ubuntu.com/usn/USN-1078-1
http://www.vupen.com/english/advisories/2011/0533
http://www.vupen.com/english/advisories/2011/0581
http://www.vupen.com/english/advisories/2011/0596




© 1998-2021 E-Soft Inc. All rights reserved.