Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

john lightsey vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3

CVE-2015-3406

The PGP signature parsing in Module::Signature prior to 0.74 allows remote malicious users to cause the unsigned portion of a SIGNATURE file to be treated as the signed portion via unspecified vectors.
Module-signature Project Module-signatureCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.04
NA

CVE-2015-3407

Module::Signature prior to 0.74 allows remote malicious users to bypass signature verification for files via a signature file that does not list the files.
Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.04Module-signature Project Module-signature
NA

CVE-2015-3408

Module::Signature prior to 0.74 allows remote malicious users to execute arbitrary shell commands via a crafted SIGNATURE file which is not properly handled when generating checksums from a signed manifest.
Module-signature Project Module-signatureCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.04
NA

CVE-2015-3409

Untrusted search path vulnerability in Module::Signature prior to 0.75 allows local users to gain privileges via a Trojan horse module under the current working directory, as demonstrated by a Trojan horse Text::Diff module.
Module-signature Project Module-signatureCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.04
7.8
CVSSv3

CVE-2016-1238

(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpan/Encode/bin/ucmlint, (10) cpa...
Debian Debian Linux 8.0Fedoraproject Fedora 24Fedoraproject Fedora 23Perl Perl 5.003 92Perl Perl 5.21.1Perl Perl 5.9.3Perl Perl 5.14.1Perl Perl 5.8.0Perl Perl 5.003 97Perl Perl 5.6.0Perl Perl 5.17.11Perl Perl 5.24.1Perl Perl 5.16.0Perl Perl 5.19.6Perl Perl 5.22.3Perl Perl 5.17.4Perl Perl 5.003 03Perl Perl 5.18.4Perl Perl 5.18.2Perl Perl 5.8.4Perl Perl 5.15.6Perl Perl 5.004 04
9.8
CVSSv3

CVE-2011-2921

ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.
Ktsuss Project Ktsuss
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065CVE-2024-5843CVE-2024-30080code executionCVE-2024-4577CVE-2024-26169wirelessremote code executionCVE-2024-36103
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook