exploits , vulnerabilities , articles , SuSE YaST2 Backup File Name Local Arbitrary Shell Command Injection Vulnerability

Title	SuSE YaST2 Backup File Name Local Arbitrary Shell Command Injection Vulnerability
Published	2008-11-25-12:00AM
Updated	2008-11-26-03:34PM
Class	Input Validation Error
CVE	CVE-2008-4636
Remote	No
Local	Yes
Credit	This issue was disclosed by the vendor.
Vulnerable	SuSE SLES 9 S.u.S.E. YaST2 Backup 0 S.u.S.E. Linux 8.1 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 9.0 x86_64 S.u.S.E. Linux Personal 9.0 S.u.S.E. Linux Personal 8.2 S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.3 S.u.S.E. openSUSE 10.2 S.u.S.E. OpenEnterpriseServer 0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop 9 S.u.S.E. Linux Enterprise Server 8 S.u.S.E. Linux Enterprise Server 10.SP2 SP S.u.S.E. Linux Enterprise Server 10.SP1 S.u.S.E. Linux Enterprise Desktop 10 SP2 S.u.S.E. Linux Enterprise Desktop 10 SP1
Not Vulnerable
Code	An attacker with local, interactive access to a vulnerable computer can use readily available commands to exploit this issue.
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities
2009-12-14 MySQL Multiple Remote Denial Of Service Vulnerabilities
2009-12-14 Digital Scribe Multiple SQL Injection Vulnerabilities
2009-12-14 Microsoft WordPad and Office Text Converters Word 97 File Parsing Memory Corruption Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Memory Corruption Vulnerability
2009-12-14 WebKit Web Inspector Cross Site Scripting Vulnerability
2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Tue, 15 Dec 2009 11:29:10 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
OSX arab-xxx.t t868t Photokorn sania mir Gay sex fr PureFTP W.w.w.tami www.wyang9 maxcpm.inf www.russia my free pa maxcpm.inf 3x.0126wyt Gej-porno Yahu www.happy1 200 /compo n...ex.com Www.Girl-S maxcpm.inf Saheela 4.2p1 gay mens ewin88.com ewin88.com www.jqluow hollywoodx shrike ewin88.com sex video. FlashChat ewin88.com tiankidc.c ww.65965.c www.pc3721 Super+film angelina www.tjxxyx www.indin Xgallery Www.indian www.xayf.c sex video. sex video. SEX.FREE.. a importan www.indin gay sex.co phpBB por