2495 matches found
CVE-2004-1032
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete arbitrary files or create arbitrary empty files via a target filename with a large number of leading slash / characters such that fcronsighup does not properly append the intended fcrontab.sig to the...
CVE-2004-1032
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete arbitrary files or create arbitrary empty files via a target filename with a large number of leading slash / characters such that fcronsighup does not properly append the intended fcrontab.sig to the...
[SA14381] Sun Solaris stfontserverd Arbitrary File Manipulation Vulnerability
TITLE: Sun Solaris stfontserverd Arbitrary File Manipulation Vulnerability SECUNIA ADVISORY ID: SA14381 VERIFY ADVISORY: http://secunia.com/advisories/14381/ CRITICAL: Less critical IMPACT: Manipulation of data, DoS WHERE: Local system OPERATING SYSTEM: Sun Solaris 9 http://secunia.com/product/95...
gFTP: Directory traversal vulnerability
Background gFTP is a GNOME based, multi-threaded file transfer client. Description gFTP lacks input validation of filenames received by remote servers. Impact An attacker could entice a user to connect to a malicious FTP server and conduct a directory traversal attack by making use of specially...
BibORB 1.3.2 - index.php Traversal Arbitrary File Manipulation
BibORB 1.3.2 - index.php Traversal Arbitrary File Manipulation source: https://www.securityfocus.com/bid/12583/info BibORB is reported prone to multiple vulnerabilities arising from insufficient sanitization of user-supplied input. These issues can be exploited by a remote attacker to carry out...
BibORB 1.3.2 - 'index.php' Traversal Arbitrary File Manipulation
source: https://www.securityfocus.com/bid/12583/info BibORB is reported prone to multiple vulnerabilities arising from insufficient sanitization of user-supplied input. These issues can be exploited by a remote attacker to carry out cross-site scripting, HTML injection, SQL injection, directory...
CVE-2004-1387
The CVE-2004-1387 entry concerns the apache-utils package, specifically the check_forensic script (version 1.3.31). The vulnerability allows a local user to overwrite or create arbitrary files via a symlink attack on temporary files, with the underlying root cause being improper handling of tempo...
CVE-2005-0214
Simple PHP Blog (SPHPBlog) 0.3.7c is vulnerable to a directory traversal flaw via the entry parameter, enabling remote read/write of arbitrary server files. Root cause is improper sanitization of user input. OpenVAS corroborates a traversal/arbitrary file access issue, with Nessus pointing to com...
CVE-2005-0214
Directory traversal vulnerability in Simple PHP Blog SPHPBlog 0.3.7c allows remote attackers to read or create arbitrary files via a .. dot dot in the entry parameter...
gftp -- directory traversal vulnerability
A Debian Security Advisory reports: Albert Puigsech Galicia discovered a directory traversal vulnerability in a proprietary FTP client CAN-2004-1376 which is also present in gftp, a GTK+ FTP client. A malicious server could provide a specially crafted filename that could cause arbitrary files to ...
RHEL 2.1 / 3 : libtiff (RHSA-2005:019)
Updated libtiff packages that fix various integer overflows are now available. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. iDEFENSE has reported an integer overflow bug that affects libtiff. An attacker who has the ability...
CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers...
CVE-2004-2319
IBM Informix Dynamic Server IDS before 9.40.xC3 allows local users to 1 create or overwrite files via the /001 log file to onedcu or 2 read arbitrary files via a symlink attack on a file in /tmp to onshowaudit...
[SA13539] Junkie FTP Client Two Vulnerabilities
TITLE: Junkie FTP Client Two Vulnerabilities SECUNIA ADVISORY ID: SA13539 VERIFY ADVISORY: http://secunia.com/advisories/13539/ CRITICAL: Moderately critical IMPACT: System access, Manipulation of data WHERE: From remote SOFTWARE: Junkie FTP Client 0.x http://secunia.com/product/4415/ DESCRIPTION...
ArGoSoft FTP Server .lnk Shortcut Upload Arbitrary File Manipulation
The remote host is running ArGoSoft FTP Server. It is reported that ArGoSoft FTP Server is prone to an attack that allows link upload. An attacker, exploiting this flaw, may be able to have read and write access to any files and directories on the FTP server. C Tenable Network Security, Inc...
Debian DSA-518-1 : kdelibs - unsanitised input
iDEFENSE identified a vulnerability in the Opera web browser that could be used by remote attackers to create or truncate arbitrary files on the victims machine. The KDE team discovered that a similar vulnerability exists in KDE. A remote attacker could entice a user to open a carefully crafted...
CVE-2004-1670
Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other versions, allow remote attackers to 1 create arbitrary directories via a .. dot dot in the user parameter to viewaction.html or 2 rename arbitrary files via a ....// doubled dot do...
CVE-2004-0689
KDE before 3.3.0 is affected by CVE-2004-0689 where certain symbolic links point to stale locations, enabling local users to create or truncate arbitrary files through kde/kdelibs components. Public references in 2004 advisories (RHSA-2004:412, DSA-539-1, Gentoo GLSA 200408-13, FreeBSD/OpenVAS en...
CVSTrac - Arbitrary Code Execution
CVSTrac - Arbitrary Code Execution filediff?f=CVSROOT/rcsinfo&v1=1.1&v2=1.2;last; milw0rm.com 2004-08-06...
Mandrake Linux Security Advisory : kdelibs (MDKSA-2004:047)
A vulnerability in the Opera web browser was identified by iDEFENSE; the same type of vulnerability exists in KDE. The telnet, rlogin, ssh, and mailto URI handlers do not check for '-' at the beginning of the hostname passed, which makes it possible to pass an option to the programs started by th...