6887 matches found
Apple Mac OS X Security Update (HT210919 - 02)
Apple Mac OS X is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2015-7851
Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files...
DEBIAN-CVE-2015-7851
Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files...
CVE-2012-6114
The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/changelog or 2 /tmp/.git-effort...
About the security content of watchOS 6.1.2
About the security content of watchOS 6.1.2 This document describes the security content of watchOS 6.1.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
CVE-2018-12476
Relative Path Traversal vulnerability in obs-service-tarscm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects: SUSE Linux Enterprise...
CVE-2018-12476
Relative Path Traversal vulnerability in obs-service-tarscm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects: SUSE Linux Enterprise...
CVE-2019-15855
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service...
Path traversal
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service...
CVE-2014-6059
WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...
Arbitrary file deletion
WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...
CVE-2014-6059
WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...
CVE-2014-6059
CVE-2014-6059 concerns the WordPress plugin Advanced Access Manager (AAM) prior to version 2.8.2. The vulnerability is an Arbitrary File Overwrite flaw that allows an admin user to write arbitrary content to arbitrary files, which could in some configurations lead to arbitrary code execution or o...
PT-2020-7722 · WordPress · Wordpress Advanced Access Manager Plugin
Name of the Vulnerable Software and Affected Versions: WordPress Advanced Access Manager Plugin versions prior to 2.8.2 Description: The issue is related to an Arbitrary File Overwrite Vulnerability. There is no information provided about the estimated number of potentially affected devices...
SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2020:0059-1) (0-Length Headers Leak) (Data Dribble) (Empty Frames Flood) (Internal Data Buffering) (Ping Flood) (Reset Flood) (Resource Loop) (Settings Flood)
This update for nodejs12 fixes the following issues : Update to LTS release 12.13.0 jscSLE-8947. Security issues fixed : CVE-2019-9511: Fixed the HTTP/2 implementation that was vulnerable to window size manipulations bsc1146091. CVE-2019-9512: Fixed the HTTP/2 implementation that was vulnerable t...
SUSE-SU-2020:0059-1 Security update for nodejs12
This update for nodejs12 fixes the following issues: Update to LTS release 12.13.0 jscSLE-8947. Security issues fixed: - CVE-2019-9511: Fixed the HTTP/2 implementation that was vulnerable to window size manipulations bsc1146091. - CVE-2019-9512: Fixed the HTTP/2 implementation that was vulnerable...
openSUSE: Security Advisory for nodejs10 (openSUSE-SU-2019:1846-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
git: Arbitrary path overwriting via export-marks in-stream command feature
A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite arbitrary paths. An attacker can abuse this flaw if they can control the input passed to the fast-import command by using the export-marks feature and overwrite arbitrary...
Design/Logic Flaw
This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2. A malicious application may be able to overwrite arbitrary files...
CVE-2019-8530
CVE-2019-8530 affects Apple platforms (iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2). A malicious application may overwrite arbitrary files due to improved checks that were addressed. Patch status: fixed in the listed versions. Exploitation requires local access with user interaction (per CVSS: LOCA...