Command injection

The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM cat...

CVE-2017-18226

The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM cat...

CVE-2017-18226

The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM cat...

CVE-2017-18226

The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM cat...

CVE-2017-18226

CVE-2017-18226 affects Gentoo net-im/jabberd2 up to version 2.6.1, where the process creates/uses /var/run/jabber owned by the jabber user. This ownership could allow local attackers to modify a PID file and kill a root-owned process by exploiting a window between PID-file modification and the ro...

Multiple Vulnerabilities in BEESCMS Version 4.0_R_20160525

BEESCMS is an enterprise website management system based on PHP+Mysql architecture. BEESCMS V4.0R20160525 version exists in the foreground global variable coverage, background login authentication bypass, background any file read, background any file modification vulnerability, attackers can use...

BrightSign Digital Signage (4k242) File Upload Vulnerability

The BrightSign Digital Signage 4k242 is a multimedia playback device from BrightSign USA. A security vulnerability exists in BrightSign Digital Signage 4k242 using firmware version 6.2.63 and earlier. The vulnerability can be exploited to rename and modify files via the /tools.html web page...

BrightSign Digital Signage - Multiple Vulnerablities

BrightSign Digital Signage - Multiple Vulnerablities Exploit Title: BrightSign Digital Signage Multiple Vulnerabilities Date: 12/15/17 Exploit Author: [email protected] Vectors: XSS, Directory Traversal, File Modification, Information Leakage The BrightSign Digital Signage 4k242 device...

BrightSign Digital Signage - Multiple Vulnerablities

Exploit for hardware platform in category web applications Exploit Title: BrightSign Digital Signage Multiple Vulnerabilities Date: 12/15/17 Exploit Author: email protected Vectors: XSS, Directory Traversal, File Modification, Information Leakage The BrightSign Digital Signage 4k242 device Firmwa...

CVE-2017-17738

The BrightSign Digital Signage 4k242 device Firmware 6.2.63 and below allows renaming and modifying files via /tools.html...

Design/Logic Flaw

The BrightSign Digital Signage 4k242 device Firmware 6.2.63 and below allows renaming and modifying files via /tools.html...

CVE-2017-17738

Summary: CVE-2017-17738 affects BrightSign Digital Signage (4k242) devices with firmware 6.2.63 and earlier. The vulnerability allows renaming and modifying files via the web page /tools.html, as described in CNVD/NVD entries for this device. Public write-access via a web interface is indicated, ...

CVE-2017-17738

The BrightSign Digital Signage 4k242 device Firmware 6.2.63 and below allows renaming and modifying files via /tools.html...

CVE-2017-7501

It was found that versions of rpm before 4.13.0.2 use temporary files with predictable names when installing an RPM. An attacker with ability to write in a directory where files will be installed could create symbolic links to an arbitrary location and modify content, and possibly permissions to...

The vulnerability of the ServerProtect security tool, which arises due to insufficient validation of input data, allows a perpetrator to execute arbitrary code with root privileges or modify any files as desired.

The vulnerability of the ServerProtect security tool exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to modify arbitrary files or execute arbitrary code with root privileges, by exploiting the absence of software update checks...

Security Update for Microsoft SharePoint Enterprise Server 2013 (KB4011170) farm-deployment

A security vulnerability exists in Microsoft SharePoint Enterprise Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

DEBIAN-CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

Command injection

The server daemons in Kannel 1.5.0 and earlier create a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname"...

The vulnerability of the Apport service on the Ubuntu operating system allows a hacker to obtain root privileges and modify any files they desire.

The vulnerability of the Apport service on the Ubuntu operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor, operating locally, to obtain root privileges and modify arbitrary files by improperly handling permissions when creating...