Lucene search
K

1646 matches found

Positive Technologies
Positive Technologies
added 2019/12/11 12:0 a.m.4 views

PT-2019-1104 · Npm +6 · Npm Cli +6

Name of the Vulnerable Software and Affected Versions: npm CLI versions prior to 6.13.4 Description: The issue allows for an Arbitrary File Overwrite due to the failure to prevent existing globally-installed binaries from being overwritten by other package installations. For example, if a package...

9.8CVSS7.2AI score0.57132EPSS
Exploits2References106
Exploit DB
Exploit DB
added 2019/12/11 12:0 a.m.379 views

AppXSvc 17763 - Arbitrary File Overwrite (DoS)

Exploit Title: AppXSvc 17763 - Arbitrary File Overwrite DoS Date: 2019-10-28 Exploit Author: Gabor Seljan Vendor Homepage: https://www.microsoft.com/ Version: 17763.1.amd64fre.rs5release.180914-1434 Tested on: Windows 10 Version 1809 for x64-based Systems CVE: CVE-2019-1476 Summary: AppXSvc...

7.8CVSS7AI score0.41667EPSS
Exploits20
0day.today
0day.today
added 2019/12/06 12:0 a.m.367 views

Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit

Exploit Title: Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit Author : Peter Lapp Vendor Homepage : https://www.trendmicro.com/enus/business.html Link Software : https://help.deepsecurity.trendmicro.com/software.html?regs=NABU&prodid=1716 Tested on OS: v11.0.582 and...

7.1CVSS0.01311EPSS
Exploits4
exploitpack
exploitpack
added 2019/12/06 12:0 a.m.75 views

Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite

Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit Title: Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit Author : Peter Lapp Exploit Date: 2019-12-05 Vendor Homepage : https://www.trendmicro.com/enus/business.html Link Software :...

6.6CVSS7AI score0.01311EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/12/06 12:0 a.m.260 views

Trend Micro Deep Security Agent 11 Arbitrary File Overwrite

Exploit Title: Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit Author : Peter Lapp Exploit Date: 2019-12-05 Vendor Homepage : https://www.trendmicro.com/enus/business.html Link Software : https://help.deepsecurity.trendmicro.com/software.html?regs=NABU&prodid=1716 Tested on...

6.6CVSS7AI score0.01311EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/12/06 12:0 a.m.239 views

Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite

Exploit Title: Trend Micro Deep Security Agent 11 - Arbitrary File Overwrite Exploit Author : Peter Lapp Exploit Date: 2019-12-05 Vendor Homepage : https://www.trendmicro.com/enus/business.html Link Software : https://help.deepsecurity.trendmicro.com/software.html?regs=NABU&prodid=1716 Tested on...

7.1CVSS7.2AI score0.01311EPSS
Exploits4
Symantec
Symantec
added 2019/12/05 12:0 a.m.29 views

Dell Command Configure CVE-2019-18575 Arbitrary File Overwrite Vulnerability

Description Dell Command Configure is prone to an arbitrary file-overwrite vulnerability. Successful exploits may allow an attacker to write arbitrary files in the context of the user running the affected application. Dell Command Configure prior to 4.2.1 are vulnerable. Technologies Affected Del...

1.9AI score0.0034EPSS
Exploits0References1
0day.today
0day.today
added 2019/11/29 12:0 a.m.123 views

Debian pari/gp 2.x Arbitrary File Overwrite Vulnerability

pari/gp versions 2.9.1 on Debian Stretch and 2.11 on Debian Buster allow arbitrary file write and hence arbitrary code execution. pari/gp on debian stable allow arbitrary file write pari/gp is CAS computer algebra system. pari/gp version 2.9.1 on debian stretch and 2.11 on debian buster allow...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2019/11/26 12:0 a.m.262 views

pari/gp 2.x Arbitrary File Overwrite

pari/gp on debian stable allow arbitrary file write pari/gp is CAS computer algebra system. pari/gp version 2.9.1 on debian stretch and 2.11 on debian buster allow arbitrary file write and hence arbitrary code execution. poc: ======== \ a.gp \ to run: \r a.gp...

0.8AI score
Exploits0
Debian CVE
Debian CVE
added 2019/11/21 10:26 p.m.26 views

CVE-2014-5254

xcfa before 5.0.1 creates temporary files insecurely which could allow local users to launch a symlink attack and overwrite arbitrary files...

4.7CVSS3.4AI score0.00344EPSS
Exploits1
OSV
OSV
added 2019/11/13 10:15 p.m.3 views

DEBIAN-CVE-2010-4817

pithos before 0.3.5 allows overwrite of arbitrary files via symlinks...

5.5CVSS5.9AI score0.00406EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/11/07 8:15 p.m.25 views

CVE-2010-2449

Gource through 0.26 logs to a predictable file name /tmp/gource-$UID.tmp, enabling attackers to overwrite an arbitrary file via a symlink attack...

6.5CVSS6.7AI score0.01749EPSS
Exploits0References1
Veracode
Veracode
added 2019/11/06 12:21 a.m.52 views

Arbitrary File Overwrite

openssh is vulnerable to Arbitrary File Overwrite. Improper validation of object names allows a malicious server to overwrite files on the client-side via scp client...

5.9CVSS6AI score0.58204EPSS
Exploits9References40Affected Software1
Veracode
Veracode
added 2019/10/29 9:34 a.m.35 views

Arbitrary File Overwrite

github.com/containers/libpod is vulnerable to arbitrary file overwrite. The vulnerability exists as it does not properly perform symlink processing and wild-card characters parsing, allowing for overwriting of existing files when an undesired glob operation occurs...

5.5CVSS3.9AI score0.0149EPSS
Exploits1References6Affected Software1
CNVD
CNVD
added 2019/10/29 12:0 a.m.9 views

rpcbind Input Validation Error Vulnerability

rpcbind is a server that translates RPC program numbers into generic addresses for use on Linux systems. An input validation error vulnerability in rpcbind version 0.2.0, which originates when the program fails to properly validate the /tmp/portmap.xdr and /tmp/rpcbind.xdr files created by an...

7.8CVSS7AI score0.0042EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/10/16 6:36 p.m.5 views

CVE-2019-15273 Cisco TelePresence Collaboration Endpoint Software Arbitrary File Overwrite Vulnerabilities

Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...

6CVSS7AI score0.00271EPSS
Exploits0References1
Cisco
Cisco
added 2019/10/16 4:0 p.m.52 views

Cisco TelePresence Collaboration Endpoint Software Arbitrary File Overwrite Vulnerabilities

Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...

6CVSS1.7AI score0.00271EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/16 12:0 a.m.4 views

cPanel Injection Vulnerability (CNVD-2019-36141)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An injection vulnerability exists in cPanel versions prior to 11.54.0.4. The vulnerability stems from a lack of proper validation...

8.1CVSS7.3AI score0.01118EPSS
Exploits0References1
Symantec
Symantec
added 2019/10/16 12:0 a.m.23 views

Cisco TelePresence CE Software CVE-2019-15273 Multiple Arbitrary File Overwrite Vulnerabilities

Description Cisco TelePresence Collaboration Endpoint Software is prone to multiple local arbitrary file-overwrite vulnerabilities. Successful exploits may allow an attacker to overwrite arbitrary files on the underlying file-system or cause denial-of-service conditions. These issues are being...

1.3AI score0.00271EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/10/10 2:15 p.m.2 views

CVE-2019-13157

nsGreen.dll in Naver Vaccine 2.1.4 allows remote attackers to overwrite arbitary files via directory traversal sequences in a filename within nsz archive...

7.5CVSS5.6AI score0.01655EPSS
Exploits0References2
Rows per page
Query Builder