Описание
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file.
Ссылки
- ExploitPatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:debian:bsdmainutils:6.0:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.7:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.8:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.9:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.10:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.11:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.12:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.13:*:*:*:*:*:*:*
cpe:2.3:a:debian:bsdmainutils:6.0.14:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00052
Низкий
7.2 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
больше 21 года назад
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file.
debian
больше 21 года назад
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop ...
github
почти 4 года назад
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file.
EPSS
Процентиль: 16%
0.00052
Низкий
7.2 High
CVSS2
Дефекты
CWE-264