Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google tunnelblick vulnerabilities and exploits
(subscribe to this query)
6.2
CVSSv2
CVE-2012-3483
Race condition in the runScript function in Tunnelblick 3.3beta20 and previous versions allows local users to gain privileges by replacing a script file.
Google Tunnelblick
2 EDB exploits
7.2
CVSSv2
CVE-2012-3484
Tunnelblick 3.3beta20 and previous versions relies on a test for specific ownership and permissions to determine whether a program can be safely executed, which allows local users to bypass intended access restrictions and gain privileges via a (1) user-mountable image or (2) net...
Google Tunnelblick
7.2
CVSSv2
CVE-2012-3485
Tunnelblick 3.3beta20 and previous versions relies on argv[0] to determine the name of an appropriate (1) kernel module pathname or (2) executable file pathname, which allows local users to gain privileges via an execl system call.
Google Tunnelblick
2 EDB exploits
6.9
CVSSv2
CVE-2012-3486
Tunnelblick 3.3beta20 and previous versions allows local users to gain privileges via an OpenVPN configuration file that specifies execution of a script upon occurrence of an OpenVPN event.
Google Tunnelblick
1.2
CVSSv2
CVE-2012-3487
Race condition in Tunnelblick 3.3beta20 and previous versions allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.
Google Tunnelblick
1.2
CVSSv2
CVE-2012-4676
The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and previous versions allows local users to delete arbitrary files by constructing a (1) symlink or (2) hard link, a different vulnerability than CVE-2012-3485.
Google Tunnelblick
4.4
CVSSv2
CVE-2012-4677
Tunnelblick 3.3beta20 and previous versions allows local users to gain privileges by using a crafted Info.plist file to control the gOkIfNotSecure value.
Google Tunnelblick
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started