1646 matches found
RubyGems 2.6.13 - Arbitrary File Overwrite
RubyGems 2.6.13 - Arbitrary File Overwrite There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file with a...
RubyGems < 2.6.13 - Arbitrary File Overwrite Exploit
Exploit for linux platform in category local exploits There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file...
RubyGems < 2.6.13 - Arbitrary File Overwrite
There is no check for name field in metadata.gz. By assigning a maliciously crafted string like ../../../../../any/where to the field, an attacker can create an arbitrary file out of the directory of the gem, or even replace an existing file with a malicious file. Proof of Concept 1: Create a fil...
DEBIAN-CVE-2017-0901
RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem...
FlightGear Arbitrary File Overwrite Vulnerability
FlightGear is an open source multi-platform flight simulator. The main goal is to create a cutting-edge flight simulator framework for the academic research field, which can also be extended to flight training, flight simulation, flight simulation games, etc. FGLogger subsystem is one of the logg...
Unspecified vulnerability in mktexlsr (CNVD-2017-30561)
mktexlsr is a library for generating catalogs. A security vulnerability exists in mktexlsr revision 36855 and versions prior to revision 36626. A local attacker can overwrite arbitrary files with the help of symbolic links...
NTP.org 'ntpd' ':config' Command Arbitrary File Overwrite Vulnerability
NTP.org SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntp:ntp"; ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.811253";...
UBUNTU-CVE-2017-1000026
Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries...
CVE-2017-1000026
CVE-2017-1000026 affects Chef Software’s Ruby library mixlib-archive (versions ≤ 0.3.0). A directory traversal flaw allows an attacker to overwrite arbitrary files by placing .. in tar archive entries. The vulnerability impact is demonstrated in multiple advisories; Debian fixed it in ruby-mixlib...
[ASA-201705-20] lynis: arbitrary file overwrite
Arch Linux Security Advisory ASA-201705-20 ========================================== Severity: High Date : 2017-05-22 CVE-ID : CVE-2017-8108 Package : lynis Type : arbitrary file overwrite Remote : No Link : https://security.archlinux.org/AVG-278 Summary ======= The package lynis before version...
[ASA-201702-14] diffoscope: arbitrary file overwrite
Arch Linux Security Advisory ASA-201702-14 ========================================== Severity: Medium Date : 2017-02-17 CVE-ID : CVE-2017-0359 Package : diffoscope Type : arbitrary file overwrite Remote : No Link : https://security.archlinux.org/AVG-175 Summary ======= The package diffoscope...
[ASA-201701-39] firefox: multiple issues
Arch Linux Security Advisory ASA-201701-39 ========================================== Severity: Critical Date : 2017-01-29 CVE-ID : CVE-2017-5373 CVE-2017-5374 CVE-2017-5375 CVE-2017-5376 CVE-2017-5377 CVE-2017-5378 CVE-2017-5379 CVE-2017-5380 CVE-2017-5381 CVE-2017-5382 CVE-2017-5383 CVE-2017-53...
FlightGear Arbitrary File Overwrite Vulnerability
FlightGear is an open source multi-platform flight simulator. The main goal is to create a cutting-edge flight simulator framework for the academic research field, which can also be expanded to include flight training, flight simulation, flight simulation games, and more. FlightGear suffers from ...
[ASA-201611-11] tar: arbitrary file overwrite
Arch Linux Security Advisory ASA-201611-11 ========================================== Severity: Medium Date : 2016-11-03 CVE-ID : CVE-2016-6321 Package : tar Type : arbitrary file overwrite Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package tar before version...
Multiple Apple products libarchive file modification vulnerability
Apple iOS is an operating system developed for mobile devices; tvOS is a smart TV operating system; watchOS is a smart watch operating system. libarchive is a multi-format archive and compression library component. A security vulnerability exists in libarchive in several Apple products. An attack...
Dotclear Directory Traversal Vulnerability
Dotclear is a software developer Olivier Meunier developed a free PHP and MySQL-based blog Blog publishing software. A directory traversal vulnerability exists in the media.php script in Dotclear version v2.9.1. An attacker can exploit this vulnerability by sending a request with the directory...
Amazon Linux AMI : libarchive (ALAS-2016-743)
A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive. CVE-2016-5418 Multiple...
JCraft JSch Directory Traversal Vulnerability
JCraft JSch is a set of secure channels for connecting to sshd servers from JCraft Japan. A directory traversal vulnerability exists in versions of JCraft JSch prior to 0.1.53, which can be exploited by an attacker to overwrite arbitrary files in an application by sending a request with the...
CentOS 7 : libarchive (CESA-2016:1844)
An update for libarchive is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...
RedHat Update for libarchive RHSA-2016:1850-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...