153 matches found
FW: ASI Oracle Security Alert: 3 new security alerts
I have not seen the latest Oracle bugs on the list yet. 2 and 3 were credited to Juan Manuel Pascual EscribГ by Oracle. -----Original Message----- From: [email protected] mailto:[email protected] Sent: 23 October 2001 11:00 To: [email protected] Subject: ASI Oracle Security Alert: 3 n...
CVE-1999-1388
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument...
Sambar Server 4.4/5.0 - 'pagecount' File Overwrite
source: https://www.securityfocus.com/bid/3091/info Sambar Server is a multi-threaded HTTP server for Microsoft Windows and Unix systems. Sambar WWW Server is bundled with a sample script'pagecount' which creates temporary files on the host. However, it is possible for a remote attacker to craft ...
[SRT2001-10] - scoadmin /tmp issues
====================================================================== Strategic Reconnaissance Team Security AdvisorySRT2001-10 Topic: scoadmin /tmp issues Vendor: Santa Cruz Operations Release Date: 05/07/01 ====================================================================== .: Description...
[SECURITY] [DSA-053-1] nedit symlink attack
Package : nedit Problem type : insecure temporary file Debian-specific: no The nedit Nirvana editor package as shipped in the non-free section accompanying Debian GNU/Linux 2.2/potato had a bug in its printing code: when printing text it would create a temporary file with the to be printed text a...
Junsoft JSparm 4.0 - Logging Output File
Junsoft JSparm 4.0 - Logging Output File source: https://www.securityfocus.com/bid/2515/info JSparm is the Junsoft Performance Analysis Report Maker package. This software package provides an enhanced perfmon performance monitoring package and interface, as well as a performance report generation...
CVE-2001-0117
sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack...
CVE-2001-0131
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack...
CVE-2000-1136
elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...
CVE-2000-0728
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack...
CVE-2000-0533
Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files...
MDKSA-2000:057 - openssh update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Linux-Mandrake Security Update Advisory Package name: openssh Date: October 10th, 2000 Advisory ID: MDKSA-2000:057 Affected versions: 7.0, 7.1 Problem Description: A problem exists with openssh's scp program. If a user uses scp to move files from a...
wide-dhcp.txt
http://www.rootshell.com/ From [email protected] Fri Jul 17 12:47:17 1998 Date: Fri, 17 Jul 1998 19:52:31 +0700 NOVST From: Oleg Safiullin To: [email protected] Subject: wide-dhcp security hole Bug found in OpenBSD port of wide-dhcp /created by me :-/. WIDE DHCP server creates...