6886 matches found
CVE-2010-3095
mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. NOTE: this issue exists because of an incomplete fix for CVE-2008-5313...
CVE-2010-3095
mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. NOTE: this issue exists because of an incomplete fix for CVE-2008-5313...
CVE-2019-1422
An elevation of privilege vulnerability exists in the way that the iphlpsvc.dll handles file creation allowing for a file overwrite, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1420, CVE-2019-1423...
CVE-2019-1422
Technical details for CVE-2019-1422 are not provided in the connected documents. The sources mention Windows elevation-of-privilege context but do not specify affected components, versions, root cause, or fixes. Monitor for updates.
Code injection
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts...
CVE-2010-2449
Gource through 0.26 logs to a predictable file name /tmp/gource-$UID.tmp, enabling attackers to overwrite an arbitrary file via a symlink attack...
CVE-2010-2449
Gource through 0.26 logs to a predictable file name /tmp/gource-$UID.tmp, enabling attackers to overwrite an arbitrary file via a symlink attack...
CVE-2010-2449
CVE-2010-2449 affects Gource up to version 0.26. The vulnerability arises from logging to a predictable file name (/tmp/gource-$UID.tmp), enabling a symlink attack to overwrite an arbitrary file. Impact: potential file tampering with integrity risk; confidentiality/availability not indicated. No ...
Ansible: path traversal in the fetch module
A path traversal flaw was found in ansible. The fetch module allows copying and overwriting files outside of the specified destination in the local ansible controller host by not restricting an absolute path. The main threat from this vulnerability is to data confidentiality and integrity...
Arbitrary File Overwrite
openssh is vulnerable to Arbitrary File Overwrite. Improper validation of object names allows a malicious server to overwrite files on the client-side via scp client...
openssh: Improper validation of object names allows malicious server to overwrite files via scp client
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented...
Arbitrary File Overwrite
github.com/containers/libpod is vulnerable to arbitrary file overwrite. The vulnerability exists as it does not properly perform symlink processing and wild-card characters parsing, allowing for overwriting of existing files when an undesired glob operation occurs...
rpcbind Input Validation Error Vulnerability
rpcbind is a server that translates RPC program numbers into generic addresses for use on Linux systems. An input validation error vulnerability in rpcbind version 0.2.0, which originates when the program fails to properly validate the /tmp/portmap.xdr and /tmp/rpcbind.xdr files created by an...
PT-2019-5382 · Red Hat +4 · Podman +5
Name of the Vulnerable Software and Affected Versions: Podman versions prior to 1.6.0 Description: The issue is related to the handling of symbolic links in the libpod library of Podman. It allows an attacker to create a container image with specific symlinks that, when copied to the host...
CVE-2019-18370
An issue was discovered on Xiaomi Mi WiFi R3G devices before 2.28.23-stable. The backup file is in tar.gz format. After uploading, the application uses the tar zxf command to decompress, so one can control the contents of the files in the decompressed directory. In addition, the application's sh...
Medium: keepalived
Issue Overview: keepalived 2.0.8 didn't check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats. This allowed local users to overwrite arbitrary files if fs.protectedsymlinks is set to 0, as demonstrated by a symlink from /tmp/keepalived.data...
CVE-2019-15273
Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...
CVE-2019-15273
CVE-2019-15273 concerns Cisco TelePresence Collaboration Endpoint (CE) Software. The issue is in the CLI and stems from insufficient permission enforcement, allowing an authenticated local attacker (via a remote support user submitting malicious input) to overwrite arbitrary files on the underlyi...
CVE-2019-15273 Cisco TelePresence Collaboration Endpoint Software Arbitrary File Overwrite Vulnerabilities
Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...
Cisco TelePresence Collaboration Endpoint Software Arbitrary File Overwrite Vulnerabilities
Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...