Cipherdyne : Security vulnerabilities, CVEs Code Execution

Copy

CVE-2014-0039

Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory.

Max CVSS

4.4

EPSS Score

0.04%

Published

2014-02-08

Updated

2014-02-21

CVE-2012-4436

Buffer overflow in the run_last_args function in client/fwknop.c in fwknop before 2.0.3, when processing --last, might allow local users to cause a denial of service (client crash) and possibly execute arbitrary code via many .fwknop.run arguments.

Max CVSS

4.4

EPSS Score

0.04%

Published

2012-10-22

Updated

2012-11-08

CVE-2012-4434

fwknop before 2.0.3 allow remote authenticated users to cause a denial of service (server crash) or possibly execute arbitrary code.

Max CVSS

8.8

EPSS Score

2.50%

Published

2020-01-09

Updated

2020-01-10

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!