Access bypass when editing file metadata

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-002/...

[SECURITY] Fedora 20 Update: kfilemetadata-4.14.1-1.fc20

A library for extracting file metadata...

CVE-2013-6124

The Qualcomm Innovation Center QuIC init scripts in Code Aurora Forum CAF releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a 1 chown or 2 chmod command, as demonstrated by changing the permissions of an arbitrary file via...

Command injection

The Qualcomm Innovation Center QuIC init scripts in Code Aurora Forum CAF releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a 1 chown or 2 chmod command, as demonstrated by changing the permissions of an arbitrary file via...

CVE-2013-6124

The CVE-2013-6124 entry describes a local privilege escalation in Code Aurora Forum (CAF) Android 4.1.x–4.4.x where Qualcomm Innovation Center (QuIC) init scripts allow a symlink attack to modify file metadata. Specifically, during device startup, init shell scripts run with root privileges and m...

CVE-2013-6124

The Qualcomm Innovation Center QuIC init scripts in Code Aurora Forum CAF releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a 1 chown or 2 chmod command, as demonstrated by changing the permissions of an arbitrary file via...

IBM Sametime Meet Server 8.5 Arbitrary File Upload

Exploit Title: IBM Sametime Meet Server 8.5 Arbitrary File Upload Google Dork: intitle:"New Meet - IBM Lotus Sametime" Date: 11/08/2014 CVSS Score: http://nvd.nist.gov/cvss.cfm?calculator&version=2&vector=AV:N/AC:M/Au:N/C:P/I:P/A:P CVE-ID: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-3088...

Code injection

The universal protocol implementation in Sixnet UDR before 2.0 and RTU firmware before 4.8 allows remote attackers to execute arbitrary code; read, modify, or create files; or obtain file metadata via function opcodes...

PT-2011-3513 · Microsoft · Windows Vista Sp2 +5

Name of the Vulnerable Software and Affected Versions: Windows Vista SP2 Windows Server 2008 SP2 Windows Server 2008 R2 Windows Server 2008 R2 SP1 Windows 7 Gold Windows 7 SP1 Description: A denial of service issue exists due to improper parsing of file metadata by the kernel. This allows local...

Microsoft Windows Kernel CVE-2011-1971远程拒绝服务漏洞

Bugtraq ID: 48997 CVE ID：CVE-2011-1971 Microsoft Windows是一款流行的操作系统。 在解析文件中的元数据信息时内核存在错误，可导致系统崩溃。 要成功利用漏洞需要用户浏览器包含特制文件的文件夹如浏览网络共享或WEB站点引用的网络共享 Microsoft Windows Vista x64 Edition SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 R2 x64 SP1 Microsoft Windows Server 2008 R2 x64 Microsoft...

rpm: fails to drop SUID/SGID bits on package upgrade

lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable 1...

DEBIAN-CVE-2010-2199

lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package removal, which might allow local users to bypass intended access restrictions by creating a hard link to...

CVE-2010-2199

lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package removal, which might allow local users to bypass intended access restrictions by creating a hard link to...

CVE-2004-2768

The CVE-2004-2768 entry concerns dpkg 1.9.21 where metadata for a file is not properly reset during package upgrades. This could let local attackers gain privileges by creating a hard link to a vulnerable (1) setuid, (2) setgid, or (3) device file; the issue is related to CVE-2010-2059. The initi...

CVE-2005-4889

lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable 1 setuid or 2 setgid file, a related issue to CVE-2010-2059...

CVE-2007-2539

CVE-2007-2539 affects RunCMS 1.5.2 and earlier, where the show_files function leads to information disclosure (revealing file existence and metadata) via unspecified vectors. The available sources describe this as a remote information disclosure vulnerability, but do not provide concrete exploit ...