Argument Injection Vulnerability in util-linux-ng by util-linux
CVE-2008-1926

Currently unrated

Key Information:

Vendor

Linux
Status
Util-linux
Vendor
CVE Published:
24 April 2008

What is CVE-2008-1926?

The vulnerability allows remote attackers to manipulate log records by injecting arbitrary arguments into login events. This is achieved by appending an 'addr=' statement to the login name. As a result, an attacker can hide malicious activities, making it difficult for system administrators to accurately monitor user actions. The affected versions of util-linux-ng (2.14 and earlier) are particularly susceptible, posing a significant risk to system integrity and security audits.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/30014
third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29982
third-party-advisoryx_refsource_SECUNIA
http://git.kernel.org/?p=utils/util-linux-ng/util-linux-n...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.