CVE-2001-0114

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter...

[SECURITY] [DSA-039-1] glibc local file overwrite problems

Package : glibc Problem type : local file overwrite Debian-specific: no The version of GNU libc that was distributed with Debian GNU/Linux 2.2 suffered from 2 security problems: It was possible to use LDPRELOAD to load libraries that are listed in /etc/ld.so.cache, even for suid programs. This...

CVE-2000-0890

periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack...

CVE-2001-0036

KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file...

CVE-2001-0114

The CVE-2001-0114 issue affects OmniHTTPd 2.07; a vulnerability in statsconfig.pl allows remote attackers to overwrite arbitrary files via the cgidir parameter. This is a file-overwrite risk that can enable partial confidentiality impact and potential further abuse, depending on the target enviro...

CVE-2001-0114

statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter...

CVE-2001-0132

Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack...

CVE-2001-0095

catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack on the smanPID temporary file...

CVE-2001-0079

Support Tools Manager STM A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the toolstat.txt log file...

CVE-2001-0105

Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group...

CVE-2001-0079

CVE-2001-0079 affects HP-UX Support Tools Manager (STM) A.22.00. A local user can exploit a symlink race to overwrite arbitrary files by targeting the tool_stat.txt log file, enabling local file modification. The entry explicitly lists a local attack vector with a partial integrity impact and no ...

Многочисленные дырки в JRUN

Атакующий имеет возможность перезаписать файлы на сервере, выполнить код на сервере и получить доступ к служебным файлам...

CVE-2000-0934

Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack...

CVE-2000-0702

The net.init rc script in HP-UX 11.00 S008net.init allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file...

CVE-2000-1136

CVE-2000-1136 affects elvis-tiny before 1.4-10 in Debian GNU/Linux (and possibly other Linux OS). The issue is a symlink attack that lets local users overwrite files of other users. Exploitation is Local with Low complexity and no authentication required; impacts include partial confidentiality, ...

CVE-2000-1178

The CVE covers the joe text editor, where on abnormal exit it follows symbolic links when creating the rescue file DEADJOE, enabling local attackers to append/overwrite files of other users’ sessions. The core issue is unsafe handling of DEADJOE links during crash/exit, allowing symlink abuse to ...

CVE-2000-1162

ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1136

elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...

CVE-2000-0992

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack...

CVE-2000-1135

fshd fsh daemon in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack...