TROYANOSYVIRUS
Volver a CVEs

CVE-2016-5410

N/A

Descripcion

firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado4/19/2017
Ultima modificacion4/20/2025
Fuentenvd
Avistamientos honeypot0

Productos afectados

firewalld:firewalldredhat:enterprise_linux_desktopredhat:enterprise_linux_hpc_noderedhat:enterprise_linux_serverredhat:enterprise_linux_workstation

Debilidades (CWE)

CWE-287

Referencias

http://rhn.redhat.com/errata/RHSA-2016-2597.html(secalert@redhat.com)
http://www.firewalld.org/2016/08/firewalld-0-4-3-3-release(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2016/08/16/3(secalert@redhat.com)
http://www.securityfocus.com/bid/92481(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=1360135(secalert@redhat.com)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPM3GUQRU2KPRXDEQLAMCDQEAIARJSBT/(secalert@redhat.com)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBJMYLGRVKIPJEI3VZJ4WQZT7FBQ5BKO/(secalert@redhat.com)
https://security.gentoo.org/glsa/201701-70(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2016-2597.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.firewalld.org/2016/08/firewalld-0-4-3-3-release(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2016/08/16/3(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/92481(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=1360135(af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPM3GUQRU2KPRXDEQLAMCDQEAIARJSBT/(af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZBJMYLGRVKIPJEI3VZJ4WQZT7FBQ5BKO/(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201701-70(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.