Keyur Hariya
Maxim Integrated's IoT development kit
Dependencies: MAX30101 MAX30003 MAX113XX_Pixi MAX30205 max32630fthr USBDevice
tools/Rats-2.4/rats-perl.xml@1:efe9cad8942f, 2018-03-13 (annotated)
- Committer:
- Mahir Ozturk
- Date:
- Tue Mar 13 14:52:59 2018 +0300
- Revision:
- 1:efe9cad8942f
Commit project files
Change-Id: I2188228f2a27e9a13e2407846e48b38c2596caa0
Who changed what in which revision?
| User | Revision | Line number | New contents of line |
|---|---|---|---|
| Mahir Ozturk |
1:efe9cad8942f | 1 | <?xml version="1.0"?> |
| Mahir Ozturk |
1:efe9cad8942f | 2 | <!DOCTYPE RATS [ |
| Mahir Ozturk |
1:efe9cad8942f | 3 | <!ENTITY taintedfileop "When using this function, it is important to be sure that the string being passed in does not contain relative path elements (../ for example), or a null, which may cause underlying C calls to behave in ways you do not expect. This is especially important if the string is in any way constructed from a user supplied value."> |
| Mahir Ozturk |
1:efe9cad8942f | 4 | <!ENTITY dns "DNS results can easily be forged by an attacker (or arbitrarily se |
| Mahir Ozturk |
1:efe9cad8942f | 5 | t to large values, etc), and should not be trusted."> |
| Mahir Ozturk |
1:efe9cad8942f | 6 | <!ENTITY randdesc "Standard random number generators should not be used to |
| Mahir Ozturk |
1:efe9cad8942f | 7 | generate randomness used for security reasons. For security sensitive randomnes |
| Mahir Ozturk |
1:efe9cad8942f | 8 | s a crytographic randomness generator that provides sufficient entropy should be |
| Mahir Ozturk |
1:efe9cad8942f | 9 | used."> |
| Mahir Ozturk |
1:efe9cad8942f | 10 | |
| Mahir Ozturk |
1:efe9cad8942f | 11 | ]> |
| Mahir Ozturk |
1:efe9cad8942f | 12 | |
| Mahir Ozturk |
1:efe9cad8942f | 13 | |
| Mahir Ozturk |
1:efe9cad8942f | 14 | <VulnDB lang="perl"> |
| Mahir Ozturk |
1:efe9cad8942f | 15 | |
| Mahir Ozturk |
1:efe9cad8942f | 16 | |
| Mahir Ozturk |
1:efe9cad8942f | 17 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 18 | <Name>srand</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 19 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 20 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 21 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 22 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 23 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 24 | |
| Mahir Ozturk |
1:efe9cad8942f | 25 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 26 | <Name>rand</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 27 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 28 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 29 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 30 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 31 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 32 | |
| Mahir Ozturk |
1:efe9cad8942f | 33 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 34 | <Name>getc</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 35 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 36 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 37 | |
| Mahir Ozturk |
1:efe9cad8942f | 38 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 39 | <Name>readdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 40 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 41 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 42 | |
| Mahir Ozturk |
1:efe9cad8942f | 43 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 44 | <Name>read</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 45 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 46 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 47 | |
| Mahir Ozturk |
1:efe9cad8942f | 48 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 49 | <Name>sysread</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 50 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 51 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 52 | |
| Mahir Ozturk |
1:efe9cad8942f | 53 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 54 | <Name>exec</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 55 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 56 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 57 | <Description>When using exec, it is important to be sure that the string being used does not contain relative paths elements (../ for example), or a null, which may cause underlying C calls to behave strangely. </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 58 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 59 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 60 | |
| Mahir Ozturk |
1:efe9cad8942f | 61 | |
| Mahir Ozturk |
1:efe9cad8942f | 62 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 63 | <Name>fcntl</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 64 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 65 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 66 | <Description>The filehandle argument should not be derived from |
| Mahir Ozturk |
1:efe9cad8942f | 67 | user input. Doing so could allow arbitrary filehandles |
| Mahir Ozturk |
1:efe9cad8942f | 68 | to have operations carried out on them. |
| Mahir Ozturk |
1:efe9cad8942f | 69 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 70 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 71 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 72 | |
| Mahir Ozturk |
1:efe9cad8942f | 73 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 74 | <Name>bind</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 75 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 76 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 77 | <Description>The second argument specifiying the packed address to bind |
| Mahir Ozturk |
1:efe9cad8942f | 78 | to, should not be derived from user input. If the address |
| Mahir Ozturk |
1:efe9cad8942f | 79 | is derived from user input, it is possible for a malicious |
| Mahir Ozturk |
1:efe9cad8942f | 80 | user to cause the socket to be bound to an address of their |
| Mahir Ozturk |
1:efe9cad8942f | 81 | choice. |
| Mahir Ozturk |
1:efe9cad8942f | 82 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 83 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 84 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 85 | |
| Mahir Ozturk |
1:efe9cad8942f | 86 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 87 | <Name>setpgrp</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 88 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 89 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 90 | <Description>When using setpgrp, neither argument should be derived |
| Mahir Ozturk |
1:efe9cad8942f | 91 | from user input, doing so may allow the attacker to modify |
| Mahir Ozturk |
1:efe9cad8942f | 92 | both the PID and the PGRP argument, possibly allowing |
| Mahir Ozturk |
1:efe9cad8942f | 93 | arbitrary processes to have their process group changed. |
| Mahir Ozturk |
1:efe9cad8942f | 94 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 95 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 96 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 97 | |
| Mahir Ozturk |
1:efe9cad8942f | 98 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 99 | <Name>setpriority</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 100 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 101 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 102 | <Description>When using setpriority, do not pass arguments to it that |
| Mahir Ozturk |
1:efe9cad8942f | 103 | are derived from user input. Doing so could allow an |
| Mahir Ozturk |
1:efe9cad8942f | 104 | attacker to set the priority of an arbitrary process on |
| Mahir Ozturk |
1:efe9cad8942f | 105 | the system. |
| Mahir Ozturk |
1:efe9cad8942f | 106 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 107 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 108 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 109 | |
| Mahir Ozturk |
1:efe9cad8942f | 110 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 111 | <Name>syscall</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 112 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 113 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 114 | <Description>Care should be exercised when using the syscall function. |
| Mahir Ozturk |
1:efe9cad8942f | 115 | Arguments derived from user input are to be avoided, and |
| Mahir Ozturk |
1:efe9cad8942f | 116 | are especially dangerous due to the fact they are passed |
| Mahir Ozturk |
1:efe9cad8942f | 117 | directly to the underlying OS call. There is also a |
| Mahir Ozturk |
1:efe9cad8942f | 118 | potential for buffer-overflow like problems with strings |
| Mahir Ozturk |
1:efe9cad8942f | 119 | that may be written to. Extend all perl strings to sane |
| Mahir Ozturk |
1:efe9cad8942f | 120 | lengths before passing them into this function. |
| Mahir Ozturk |
1:efe9cad8942f | 121 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 122 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 123 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 124 | |
| Mahir Ozturk |
1:efe9cad8942f | 125 | |
| Mahir Ozturk |
1:efe9cad8942f | 126 | |
| Mahir Ozturk |
1:efe9cad8942f | 127 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 128 | <Name>connect</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 129 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 130 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 131 | <Description>The second argument specifiying the packed address to bind |
| Mahir Ozturk |
1:efe9cad8942f | 132 | to, should not be derived from user input. If the address |
| Mahir Ozturk |
1:efe9cad8942f | 133 | is derived from user input, it is possible for a malicious |
| Mahir Ozturk |
1:efe9cad8942f | 134 | user to cause the socket to connect to an arbitrary remote |
| Mahir Ozturk |
1:efe9cad8942f | 135 | address, enabling hijacking of potentially sensitive |
| Mahir Ozturk |
1:efe9cad8942f | 136 | network data. |
| Mahir Ozturk |
1:efe9cad8942f | 137 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 138 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 139 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 140 | |
| Mahir Ozturk |
1:efe9cad8942f | 141 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 142 | <Name>system</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 143 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 144 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 145 | <Description>When using system, it is important to be sure that the string being used does not contain relative path elements (../ for example), or a null, which may cause underlying C calls to behave strangely. It is also imperative |
| Mahir Ozturk |
1:efe9cad8942f | 146 | to insure the string has no characters that may be interpreted by the shell, possibly allowing arbitrary commands to be run |
| Mahir Ozturk |
1:efe9cad8942f | 147 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 148 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 149 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 150 | |
| Mahir Ozturk |
1:efe9cad8942f | 151 | |
| Mahir Ozturk |
1:efe9cad8942f | 152 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 153 | <Name>open</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 154 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 155 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 156 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 157 | <Description>The filename argument of open should be carefully checked if it is being created with any user-supplied string as a compontent of it. Strings should be checked for occurences of path backtracking/relative path components (../ as an example), or nulls, which may cause the underlying C call to interpret the filename to open differently than expected. It is also important to make sure that the final filename does not end in a "|", as this will cause the path to be executed. |
| Mahir Ozturk |
1:efe9cad8942f | 158 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 159 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 160 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 161 | |
| Mahir Ozturk |
1:efe9cad8942f | 162 | |
| Mahir Ozturk |
1:efe9cad8942f | 163 | |
| Mahir Ozturk |
1:efe9cad8942f | 164 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 165 | <Name>unlink</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 166 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 167 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 168 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 169 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 170 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 171 | |
| Mahir Ozturk |
1:efe9cad8942f | 172 | |
| Mahir Ozturk |
1:efe9cad8942f | 173 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 174 | <Name>mkdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 175 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 176 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 177 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 178 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 179 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 180 | |
| Mahir Ozturk |
1:efe9cad8942f | 181 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 182 | <Name>chdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 183 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 184 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 185 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 186 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 187 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 188 | |
| Mahir Ozturk |
1:efe9cad8942f | 189 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 190 | <Name>rmdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 191 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 192 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 193 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 194 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 195 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 196 | |
| Mahir Ozturk |
1:efe9cad8942f | 197 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 198 | <Name>chown</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 199 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 200 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 201 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 202 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 203 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 204 | |
| Mahir Ozturk |
1:efe9cad8942f | 205 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 206 | <Name>chmod</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 207 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 208 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 209 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 210 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 211 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 212 | |
| Mahir Ozturk |
1:efe9cad8942f | 213 | |
| Mahir Ozturk |
1:efe9cad8942f | 214 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 215 | <Name>link</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 216 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 217 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 218 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 219 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 220 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 221 | |
| Mahir Ozturk |
1:efe9cad8942f | 222 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 223 | <Name>symlink</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 224 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 225 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 226 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 227 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 228 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 229 | |
| Mahir Ozturk |
1:efe9cad8942f | 230 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 231 | <Name>truncate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 232 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 233 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 234 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 235 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 236 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 237 | |
| Mahir Ozturk |
1:efe9cad8942f | 238 | |
| Mahir Ozturk |
1:efe9cad8942f | 239 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 240 | <Name>chroot</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 241 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 242 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 243 | <Description>&taintedfileop;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 244 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 245 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 246 | |
| Mahir Ozturk |
1:efe9cad8942f | 247 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 248 | <Name>umask</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 249 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 250 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 251 | <Description>Using a user supplied expression as an argument to this function should be avoided. Explicitly set the umask to a value you know is safe.</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 252 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 253 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 254 | |
| Mahir Ozturk |
1:efe9cad8942f | 255 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 256 | <Name>kill</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 257 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 258 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 259 | <Description>Avoid constructing the list of process ids to kill with any strings that contain user inputted data. Users may be able to manipulate the pid values in such a way as to cause arbitrary signals to be sent to processes, possibly leading to exploits or DoS attacks. |
| Mahir Ozturk |
1:efe9cad8942f | 260 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 261 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 262 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 263 | |
| Mahir Ozturk |
1:efe9cad8942f | 264 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 265 | <Name>ioctl</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 266 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 267 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 268 | <Description>Using user supplied strings as the arguments to ioctl may allow the user to manipulate the device in arbitrary ways. |
| Mahir Ozturk |
1:efe9cad8942f | 269 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 270 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 271 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 272 | |
| Mahir Ozturk |
1:efe9cad8942f | 273 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 274 | <Name>eval</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 275 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 276 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 277 | <Description>Using user supplied strings anywhere inside of an eval is extremely dangerous. Unvalidated user input fed into an eval call may allow the user to execute arbitrary perl code. Avoid ever passing user supplied strings into eval.</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 278 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 279 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 280 | |
| Mahir Ozturk |
1:efe9cad8942f | 281 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 282 | <Name>glob</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 283 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 284 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 285 | <Description>Glob invokes a shell (usually /bin/csh) to obtain the list of filenames that match the glob pattern. Unvalidated user input used in a glob pattern could allow arbitrary shell code to be run, possibly executing programs as a result. Avoid using user input in glob patterns. |
| Mahir Ozturk |
1:efe9cad8942f | 286 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 287 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 288 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 289 | |
| Mahir Ozturk |
1:efe9cad8942f | 290 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 291 | <Name>fork</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 292 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 293 | <Description> |
| Mahir Ozturk |
1:efe9cad8942f | 294 | Remember that sensitive data get copied on fork. For example, a random |
| Mahir Ozturk |
1:efe9cad8942f | 295 | number generator's internal state will get duplicated, and the child |
| Mahir Ozturk |
1:efe9cad8942f | 296 | may start outputting identical number streams. |
| Mahir Ozturk |
1:efe9cad8942f | 297 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 298 | <Severity>Low</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 299 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 300 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 301 | |
| Mahir Ozturk |
1:efe9cad8942f | 302 | |
| Mahir Ozturk |
1:efe9cad8942f | 303 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 304 | <Name>gethostbyname</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 305 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 306 | <Description>&dns;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 307 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 308 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 309 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 310 | |
| Mahir Ozturk |
1:efe9cad8942f | 311 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 312 | <Name>gethostbyaddr</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 313 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 314 | <Description>&dns;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 315 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 316 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 317 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 318 | |
| Mahir Ozturk |
1:efe9cad8942f | 319 | |
| Mahir Ozturk |
1:efe9cad8942f | 320 | |
| Mahir Ozturk |
1:efe9cad8942f | 321 | </VulnDB> |