AIX 6.1 TL 6 : bos.rte.odm (U850143)

The remote host is missing AIX PTF U850143, which is related to the security of the package bos.rte.odm. AIX could allow a arbitrary file overwrite symlink vulnerability due to libodm.a bug. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

Pidgin 'libpurple' 任意文件覆盖漏洞(CVE-2013-0271)

BUGTRAQ ID: 57952 CVECAN ID: CVE-2013-0271 Pidgin是一款多合一世界主流即时通讯软件集成工具。 Pidgin 2.10.7之前版本libpurple中MXit protocol插件存在安全漏洞，允许攻击者通过特制的mxit或mxit/imagestrips路径名创建或覆盖文件。 0 Pidgin 2.x 厂商补丁： Pidgin ------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.pidgin.im/news/security/...

PT-2013-2196

Name of the Vulnerable Software and Affected Versions PackStack affected versions not specified Description The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp. This is due to vulnerabilities in two components: 1...

CVE-2013-0200

HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...

rubygem-ruby_parser: incorrect temporary file usage

The diffpp function in lib/gauntletrubyparser.rb in the rubyparser gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

Pidgin < 2.10.7 Multiple Vulnerabilities

The version of Pidgin installed on the remote host is earlier than 2.10.7. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the 'MXit' plugin and the saving of images that could allow arbitrary files to be overwritten. CVE-2013-0271 - A...

CVE-2012-5564

android-tools 4.1.1 in Android Debug Bridge ADB allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log...

CVE-2013-0265

Removed by vendor...

AIX 6.1 TL 6 : libodm (IV21379)

AIX could allow a arbitrary file overwrite symlink vulnerability due to libodm.a bug. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch has been replaced. Disabled on 2014/06/02. C Tenable Network Security, Inc. The text in the description was extracted fro...

Aloaha PDF Crypter (3.5.0.1164) ActiveX Arbitrary File Overwrite

Exploit for windows platform in category dos / poc ============================================================================================ TITLE: ============================================================================================ Aloaha PDF Crypter 3.5.0.1164 activex arbitrary file...

Aloaha PDF Crypter (3.5.0.1164) - ActiveX Arbitrary File Overwrite

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================================ TITLE: ============================================================================================ Aloaha PDF Crypter 3.5.0.1164 activex arbitrary file...

Siemens Automation License Manager 'almaxcx.dll' ActiveX Arbitrary File Overwrite Vulnerability

Binary data scadasiemensalmalmaxcxactivex.nbin...

PYSEC-2013-5

Directory traversal vulnerability in the doattachmentmove function in the AttachFile action action/AttachFile.py in MoinMoin 1.9.3 through 1.9.5 allows remote attackers to overwrite arbitrary files via a .. dot dot in a file name...

PYSEC-2013-7

Multiple directory traversal vulnerabilities in the 1 twikidraw action/twikidraw.py and 2 anywikidraw action/anywikidraw.py actions in MoinMoin before 1.9.6 allow remote authenticated users with write permissions to overwrite arbitrary files via unspecified vectors. NOTE: this can be leveraged wi...

CVE-2012-4417

CVE-2012-4417 affects GlusterFS 3.3.0 as used in Red Hat Storage Server 2.0, where local users can overwrite arbitrary files via a symlink attack on temporary files with predictable names. The issue is tied to insecure temporary file creation in GlusterFS components; impact is partial confidentia...

[waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin

waraxe-2012-SA094 - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin ============================================================================================= Author: Janek Vind "waraxe" Date: 24. October 2012 Location: Estonia, Tartu Web:...

HP Application Lifecycle Management ActiveX Control Arbitrary File Overwrite

Added: 10/09/2012 BID: 55272 OSVDB: 85059 Background HP Application Lifecycle Management ALM is a software product designed to manage the application lifecycle from requirements through readiness for delivery from a single repository, providing a consistent user experience and customizable...

HP Application Lifecycle Management ActiveX Control Arbitrary File Overwrite

Added: 10/09/2012 BID: 55272 OSVDB: 85059 Background HP Application Lifecycle Management ALM is a software product designed to manage the application lifecycle from requirements through readiness for delivery from a single repository, providing a consistent user experience and customizable...

HP Application Lifecycle Management ActiveX Control Arbitrary File Overwrite

Added: 10/09/2012 BID: 55272 OSVDB: 85059 Background HP Application Lifecycle Management ALM is a software product designed to manage the application lifecycle from requirements through readiness for delivery from a single repository, providing a consistent user experience and customizable...

UBUNTU-CVE-2011-4363

ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows local users to overwrite arbitrary files via a symlink attack on /tmp/TTYDEVS...