2675 matches found
CVE-2000-0336
Summary: CVE-2000-0336 affects the OpenLDAP server, where local users can modify arbitrary files via a symlink attack. The root cause described in connected Nessus/Mandrake entries is that OpenLDAP follows symbolic links when creating files, using a default location like /usr/tmp (symlinked to /t...
CVE-2000-0628
The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files...
CVE-1999-0864
CVE-1999-0864 involves UnixWare programs that dump core; a local user can modify files via a symlink attack on the ./core.pid file. The description notes a local-privilege/impact vector but provides no remediation or explicit exploit details in the supplied documents. The connected documents do n...
CVE-2000-0431
Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files...
CVE-2000-0249
The AIX Fast Response Cache Accelerator FRCA allows local users to modify arbitrary files via the configuration capability in the frcactrl program...
CVE-1999-0957
MajorCool mjkeycache program allows local users to modify files via a symlink attack...
CVE-1999-0957
The affected software is MajorCool mj_key_cache. The vulnerability arises from a symlink attack that allows local users to modify files. The connected PT-1997-1171 entry notes affected versions are not specified and provides no information about a fix; no explicit mitigation is documented in the ...
CVE-2000-0107
The CVE-2000-0107 entry concerns the Linux apcd program, which is vulnerable to a local symlink attack that lets an authenticated local attacker modify arbitrary files. The root cause is improper handling of symlinks, enabling file overwrites via symlink manipulation. The available references con...
CVE-2000-0194
buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters...
CVE-2000-0210
The lit program in Sun Flex License Manager FlexLM follows symlinks, which allows local users to modify arbitrary files...
CVE-2000-0194
The CVE-2000-0194 issue affects Corel Linux, specifically the buildxconf component. Local users can modify or create arbitrary files by supplying -x or -f parameters, indicating an insecure handling of these options. The underlying details (root cause, affected versions, and remediation) are not ...
CVE-2000-0210
CVE-2000-0210 affects the lit program in Sun Flex License Manager (FlexLM). The vulnerability arises because lit follows symbolic links, allowing a local user to modify arbitrary files on the host. Root cause: improper handling of symlinks in the lit utility. Impact described in sources is local ...
CVE-2000-0194
buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters...
Sambar Server 4.2 Beta 7 - Batch CGI
source: https://www.securityfocus.com/bid/1002/info The Sambar Web/FTP/Proxy Server for Windows NT and 2000 supports DOS-style batch programs as CGI scripts. A remote attacker can use any batch file used by the server in the 'cgi-bin' directory to run any valid command-line program with...
CVE-2000-0154
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack...
CVE-2000-0067
CyberCash Merchant Connection Kit MCK allows local users to modify files via a symlink attack...
CVE-1999-0086
Technical details are not publicly available in the provided connected documents. Monitor for updates on affected products, versions, root cause, and fixes.
CVE-1999-0857
FreeBSD gdc program allows local users to modify files via a symlink attack...
CVE-1999-0663
A system-critical program, library, or file has a checksum or other integrity measurement that indicates that it has been modified...
CVE-2000-0067
The CVE refers to CyberCash Merchant Connection Kit (MCK). Affected component: MCK. Vulnerability: local users can modify files via a symlink attack (symlink race condition) as described in CVE-2000-0067. The PT-2000-1059 entry confirms the issue is related to local access and notes that affected...