Lucene search
K

1646 matches found

exploitpack
exploitpack
added 2017/09/04 12:0 a.m.15 views

RubyGems 2.6.13 - Arbitrary File Overwrite

RubyGems 2.6.13 - Arbitrary File Overwrite There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file with a...

0.6AI score
Exploits0
0day.today
0day.today
added 2017/09/04 12:0 a.m.77 views

RubyGems < 2.6.13 - Arbitrary File Overwrite Exploit

Exploit for linux platform in category local exploits There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file...

6.4CVSS8.7AI score0.29442EPSS
Exploits2
Exploit DB
Exploit DB
added 2017/09/04 12:0 a.m.46 views

RubyGems &lt; 2.6.13 - Arbitrary File Overwrite

There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file with a malicious file. Proof of Concept 1: Create a fil...

7.4AI score
Exploits0
OSV
OSV
added 2017/08/31 8:29 p.m.1 views

DEBIAN-CVE-2017-0901

RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem...

7.5CVSS8.4AI score0.29442EPSS
Exploits2References1
CNVD
CNVD
added 2017/08/29 12:0 a.m.4 views

FlightGear Arbitrary File Overwrite Vulnerability

FlightGear is an open source multi-platform flight simulator. The main goal is to create a cutting-edge flight simulator framework for the academic research field, which can also be extended to flight training, flight simulation, flight simulation games, etc. FGLogger subsystem is one of the logg...

7.5CVSS7.4AI score0.01058EPSS
Exploits1References1
CNVD
CNVD
added 2017/08/29 12:0 a.m.3 views

Unspecified vulnerability in mktexlsr (CNVD-2017-30561)

mktexlsr is a library for generating catalogs. A security vulnerability exists in mktexlsr revision 36855 and versions prior to revision 36626. A local attacker can overwrite arbitrary files with the help of symbolic links...

6.1CVSS6.5AI score0.00419EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/07/25 12:0 a.m.35 views

NTP.org 'ntpd' ':config' Command Arbitrary File Overwrite Vulnerability

NTP.org SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntp:ntp"; ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.811253";...

7.5CVSS7.5AI score0.03823EPSS
Exploits0References2
OSV
OSV
added 2017/07/17 1:18 p.m.2 views

UBUNTU-CVE-2017-1000026

Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries...

7.5CVSS7.2AI score0.019EPSS
Exploits0References5
CVE
CVE
added 2017/07/13 8:0 p.m.64 views

CVE-2017-1000026

CVE-2017-1000026 affects Chef Software’s Ruby library mixlib-archive (versions ≤ 0.3.0). A directory traversal flaw allows an attacker to overwrite arbitrary files by placing .. in tar archive entries. The vulnerability impact is demonstrated in multiple advisories; Debian fixed it in ruby-mixlib...

7.5CVSS7.3AI score0.019EPSS
Exploits0References1Affected Software1
ArchLinux
ArchLinux
added 2017/05/22 12:0 a.m.27 views

[ASA-201705-20] lynis: arbitrary file overwrite

Arch Linux Security Advisory ASA-201705-20 ========================================== Severity: High Date : 2017-05-22 CVE-ID : CVE-2017-8108 Package : lynis Type : arbitrary file overwrite Remote : No Link : https://security.archlinux.org/AVG-278 Summary ======= The package lynis before version...

7.8CVSS0.6AI score0.00426EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2017/02/17 12:0 a.m.25 views

[ASA-201702-14] diffoscope: arbitrary file overwrite

Arch Linux Security Advisory ASA-201702-14 ========================================== Severity: Medium Date : 2017-02-17 CVE-ID : CVE-2017-0359 Package : diffoscope Type : arbitrary file overwrite Remote : No Link : https://security.archlinux.org/AVG-175 Summary ======= The package diffoscope...

10CVSS1.2AI score0.01893EPSS
Exploits4References4
ArchLinux
ArchLinux
added 2017/01/29 12:0 a.m.61 views

[ASA-201701-39] firefox: multiple issues

Arch Linux Security Advisory ASA-201701-39 ========================================== Severity: Critical Date : 2017-01-29 CVE-ID : CVE-2017-5373 CVE-2017-5374 CVE-2017-5375 CVE-2017-5376 CVE-2017-5377 CVE-2017-5378 CVE-2017-5379 CVE-2017-5380 CVE-2017-5381 CVE-2017-5382 CVE-2017-5383 CVE-2017-53...

9.8CVSS0.4AI score0.33434EPSS
Exploits22References68
CNVD
CNVD
added 2016/12/19 12:0 a.m.3 views

FlightGear Arbitrary File Overwrite Vulnerability

FlightGear is an open source multi-platform flight simulator. The main goal is to create a cutting-edge flight simulator framework for the academic research field, which can also be expanded to include flight training, flight simulation, flight simulation games, and more. FlightGear suffers from ...

7.5CVSS7.6AI score0.0324EPSS
Exploits0References1
ArchLinux
ArchLinux
added 2016/11/03 12:0 a.m.554 views

[ASA-201611-11] tar: arbitrary file overwrite

Arch Linux Security Advisory ASA-201611-11 ========================================== Severity: Medium Date : 2016-11-03 CVE-ID : CVE-2016-6321 Package : tar Type : arbitrary file overwrite Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package tar before version...

7.5CVSS0.4AI score0.15155EPSS
Exploits3References6
CNVD
CNVD
added 2016/10/27 12:0 a.m.2 views

Multiple Apple products libarchive file modification vulnerability

Apple iOS is an operating system developed for mobile devices; tvOS is a smart TV operating system; watchOS is a smart watch operating system. libarchive is a multi-format archive and compression library component. A security vulnerability exists in libarchive in several Apple products. An attack...

5.5CVSS6.6AI score0.02172EPSS
Exploits0References1
CNVD
CNVD
added 2016/09/29 12:0 a.m.3 views

Dotclear Directory Traversal Vulnerability

Dotclear is a software developer Olivier Meunier developed a free PHP and MySQL-based blog Blog publishing software. A directory traversal vulnerability exists in the media.php script in Dotclear version v2.9.1. An attacker can exploit this vulnerability by sending a request with the directory...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.38 views

Amazon Linux AMI : libarchive (ALAS-2016-743)

A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive. CVE-2016-5418 Multiple...

8.8CVSS7.7AI score0.11992EPSS
Exploits13References24
CNVD
CNVD
added 2016/09/27 12:0 a.m.2 views

JCraft JSch Directory Traversal Vulnerability

JCraft JSch is a set of secure channels for connecting to sshd servers from JCraft Japan. A directory traversal vulnerability exists in versions of JCraft JSch prior to 0.1.53, which can be exploited by an attacker to overwrite arbitrary files in an application by sending a request with the...

5.9CVSS9.5AI score0.24143EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2016/09/16 12:0 a.m.88 views

CentOS 7 : libarchive (CESA-2016:1844)

An update for libarchive is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

8.8CVSS7.8AI score0.11992EPSS
Exploits13References24
OpenVAS
OpenVAS
added 2016/09/13 12:0 a.m.30 views

RedHat Update for libarchive RHSA-2016:1850-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.11992EPSS
Exploits3References2
Rows per page
Query Builder