PT-2017-6826 · Linux+2 · Linux+2

Steve Grubb

·

Publicado

2015-08-30

·

Atualizado

2024-06-15

·

CVE-2015-5186

CVSS v3.1

5.3

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Linux versions prior to 2.4.4
Description The issue arises from the lack of sanitization of escape characters in filenames during the audit process.
Recommendations For versions prior to 2.4.4, update to version 2.4.4 or later to resolve the issue.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

ALT-PU-2015-2842
ALT-PU-2021-2935
CVE-2015-5186
MGASA-2015-0333
OPENSUSE-SU-2024:10252-1
SUSE-SU-2019:0563-1
SUSE-SU-2019:1166-1
SUSE-SU-2019_0563-1
SUSE-SU-2019_1166-1

Produtos afetados

Alt Linux
Linux
Suse