6797 matches found
CVE-2002-1138
Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine MSDE 1.0 and Microsoft Desktop Engine MSDE 2000, writes output files for scheduled jobs under its own privileges instead of the entity that launched it, which allows attackers to overwrite system files, aka "Flaw in Output File...
CVE-2004-0115
VirtualPCServices in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServicesLog temporary file...
MySQL: Insecure temporary file creation in mysqlhotcopy
Background MySQL is a popular open-source multi-threaded, multi-user SQL database server. Description Jeroen van Wolffelaar discovered that the MySQL database hot copy utility mysqlhotcopy.sh, when using the scp method, uses temporary files with predictable names. A malicious local user with writ...
GLSA-200405-05 : Utempter symlink vulnerability
The remote host is affected by the vulnerability described in GLSA-200405-05 Utempter symlink vulnerability Utempter contains a vulnerability that may allow local users to overwrite arbitrary files via a symlink attack. Impact : This vulnerability may allow arbitrary files to be overwritten with...
GLSA-200408-13 : kdebase, kdelibs: Multiple security issues
The remote host is affected by the vulnerability described in GLSA-200408-13 kdebase, kdelibs: Multiple security issues KDE contains three security issues: Insecure handling of temporary files when running KDE applications outside of the KDE environment DCOPServer creates temporary files in an...
GLSA-200405-11 : KDE URI Handler Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200405-11 KDE URI Handler Vulnerabilities The telnet, rlogin, ssh and mailto URI handlers in KDE do not check for '-' at the beginning of the hostname passed. By crafting a malicious URI and entice an user to click on it, it is...
Mandrake Linux Security Advisory : shorewall (MDKSA-2004:080)
The shorewall package has a vulnerability when creating temporary files and directories, which could allow non-root users to overwrite arbitrary files on the system. The updated packages are patched to fix the problem. As well, for Mandrakelinux 10.0, the updated packages have been fixed to start...
Samba < 2.2.8 Fragment Reassembly Overflow / Arbitrary File Overwrite
Binary data 1339.prm...
Mozilla Predictable Temporary File Symbolic Link Arbitrary File Overwrite (deprecated)
Binary data 1309.prm...
scp < 2.1 Traversal File Create/Overwrite
Binary data 1970.prm...
PHP Topsites 'counter.php' Arbitrary File Overwrite
Binary data 1533.prm...
CVE-2004-0457
The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files...
CVE-2003-0193
msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names "word$$.html"...
DEBIAN-CVE-2004-0175
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992...
CVE-2004-0233
Utempter allows device names that contain .. dot dot directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files...
CVE-2003-0193
msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names "word$$.html"...
Sendmail 'decode' Alias Arbitrary File Overwrite
Binary data 2026.prm...
NOD32 < 2.51.26 Antivirus Local File Overwrite
Binary data 3503.prm...
CVSTrac CVSROOT/passwd Arbitrary Account Deletion
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version of CVSTRAC is vulnerable to a flaw wherein a remote attacker can overwrite a critical file, thereby giving them elevated access and potentially control over other user accounts. Nessus...
WU-FTPD rnfr File Overwrite
The remote WU-FTPD server seems to be vulnerable to a remote flaw. This version contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formatted rnfr command. This flaw will allow a remote attacker to overwrite any...