CVE-2011-1018

Logwatch - Improper Input Validation

Title source: rule

Description

logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dominik George · textremotelinux

https://www.exploit-db.com/exploits/35386

View Code ZIP pw:eip

References (23)

Core 23

Core References

Patch mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2011/02/24/15

Patch x_refsource_confirm

http://sourceforge.net/tracker/?func=detail&aid=3184223&group_id=312875&atid=1316824

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0581

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43495

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055585.html

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2011/dsa-2182

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055617.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43356

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0533

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

Patch mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2011/02/24/13

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43644

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2011-0324.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43622

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/46554

Patch x_refsource_confirm

http://logwatch.svn.sourceforge.net/viewvc/logwatch/scripts/logwatch.pl?r1=3&r2=26&pathrev=26

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1078-1

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0596

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055579.html

Patch x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=680237

Product mailing-list x_refsource_mlist

http://sourceforge.net/mailarchive/forum.php?thread_name=4D604843.7040303%40mblmail.net&forum_name=logwatch-devel

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43734

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1025165

Scores

EPSS 0.2154

EPSS Percentile 95.8%

Details

CWE

CWE-20

Status published

Products (1)

logwatch/logwatch 7.3.6

Published Feb 25, 2011

Tracked Since Feb 18, 2026