4.4
CVE-2009-3894
- EPSS 0.34%
- Veröffentlicht 29.11.2009 13:07:52
- Zuletzt bearbeitet 16.06.2026 23:12:35
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginMultiple untrusted search path vulnerabilities in dstat before 0.7.0 allow local users to gain privileges via a Trojan horse Python module in (1) the current working directory or (2) a certain subdirectory of the current working directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dag.Wieers ≫ Dstat Version <= 0.6.9
Dag.Wieers ≫ Dstat Version0.1
Dag.Wieers ≫ Dstat Version0.2
Dag.Wieers ≫ Dstat Version0.3
Dag.Wieers ≫ Dstat Version0.4
Dag.Wieers ≫ Dstat Version0.5
Dag.Wieers ≫ Dstat Version0.5.2
Dag.Wieers ≫ Dstat Version0.5.3
Dag.Wieers ≫ Dstat Version0.5.4
Dag.Wieers ≫ Dstat Version0.5.5
Dag.Wieers ≫ Dstat Version0.5.6
Dag.Wieers ≫ Dstat Version0.5.7
Dag.Wieers ≫ Dstat Version0.5.8
Dag.Wieers ≫ Dstat Version0.5.9
Dag.Wieers ≫ Dstat Version0.5.10
Dag.Wieers ≫ Dstat Version0.6.0
Dag.Wieers ≫ Dstat Version0.6.1
Dag.Wieers ≫ Dstat Version0.6.2
Dag.Wieers ≫ Dstat Version0.6.3
Dag.Wieers ≫ Dstat Version0.6.4
Dag.Wieers ≫ Dstat Version0.6.5
Dag.Wieers ≫ Dstat Version0.6.6
Dag.Wieers ≫ Dstat Version0.6.7
Dag.Wieers ≫ Dstat Version0.6.8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.34% | 0.256 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.4 | 3.4 | 6.4 |
AV:L/AC:M/Au:N/C:P/I:P/A:P
|
http://bugs.gentoo.org/show_bug.cgi?id=293497
http://osvdb.org/60511
http://secunia.com/advisories/37445
http://secunia.com/advisories/37457
http://security.gentoo.org/glsa/glsa-200911-04.xml
http://svn.rpmforge.net/svn/trunk/tools/dstat/ChangeLog
http://www.mandriva.com/security/advisories?name=MDVSA-2009:341
http://www.redhat.com/support/errata/RHSA-2009-1619.html
http://www.securityfocus.com/bid/37131
https://bugzilla.redhat.com/show_bug.cgi?id=538459
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8969