Lucene search
K

6886 matches found

Prion
Prion
added 2019/01/31 6:29 p.m.33 views

Input validation

An issue was discovered in rcp in NetKit through 0.17. For an rcp operation, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned. A malicious rsh server or Man-in-The-Middle attacker can overwrite...

5.8CVSS6.2AI score0.58204EPSS
Exploits10References3Affected Software2
OSV
OSV
added 2019/01/31 6:29 p.m.4 views

UBUNTU-CVE-2019-7283

An issue was discovered in rcp in NetKit through 0.17. For an rcp operation, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned. A malicious rsh server or Man-in-The-Middle attacker can overwrite...

7.4CVSS7AI score0.01976EPSS
Exploits1References4
OSV
OSV
added 2019/01/31 6:29 p.m.8 views

DEBIAN-CVE-2019-7283

An issue was discovered in rcp in NetKit through 0.17. For an rcp operation, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned. A malicious rsh server or Man-in-The-Middle attacker can overwrite...

7.4CVSS6.6AI score0.01976EPSS
Exploits1References1
CVE
CVE
added 2019/01/31 12:0 a.m.13844 views

CVE-2019-6111

OpenSSH SCP client vulnerability CVE-2019-6111: in OpenSSH 7.9, the SCP client does not properly validate the object name returned by the server, allowing a malicious SCP server or MITM to overwrite arbitrary files in the client target directory. If recursive transfers (-r) are used, subdirectori...

5.9CVSS6.3AI score0.58204EPSS
In wildExploits9References23Affected Software2
Vulnrichment
Vulnrichment
added 2019/01/31 12:0 a.m.7 views

CVE-2019-6111

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented...

8.3AI score0.58204EPSS
Exploits9References23
Positive Technologies
Positive Technologies
added 2019/01/26 12:0 a.m.4 views

PT-2019-6235 · Netkit · Netkit

Name of the Vulnerable Software and Affected Versions: NetKit versions through 0.17 Description: The issue allows a malicious rsh server or a Man-in-The-Middle attacker to overwrite arbitrary files in a directory on the rcp client machine due to the rcp client only performing cursory validation o...

8.8CVSS6AI score0.02067EPSS
Exploits2References28
OSV
OSV
added 2019/01/24 3:29 p.m.4 views

CVE-2019-1650

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An...

8.8CVSS7.4AI score0.03475EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2019/01/24 3:0 p.m.12 views

CVE-2019-1650 Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An...

8.8CVSS7.4AI score0.03475EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/01/24 3:0 p.m.20 views

CVE-2019-1650 Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An...

8.8CVSS8.9AI score0.03475EPSS
Exploits0References2
Cisco
Cisco
added 2019/01/23 4:0 p.m.155 views

Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An...

8.8CVSS2.4AI score0.03475EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/01/17 12:0 a.m.33 views

WinSCP Arbitrary File Overwrite Vulnerability - Windows

WinSCP is prone to an arbitrary file overwrie vulnerability SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:winscp:winscp";...

7.5CVSS7.8AI score0.02525EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2019/01/15 12:32 p.m.7 views

36-Year-Old SCP Clients' Implementation Flaws Discovered

A set of 36-year-old vulnerabilities has been uncovered in the Secure Copy Protocol SCP implementation of many client applications that can be exploited by malicious servers to overwrite arbitrary files in the SCP client target directory unauthorizedly. Session Control Protocol SCP, also known as...

6.8CVSS7.3AI score0.58204EPSS
Exploits10
Veracode
Veracode
added 2019/01/15 9:13 a.m.29 views

Arbitrary File Overwrite

libarchive.so is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as sandboxing restrictions can be evaded through hard links with data, causing file overwrites...

7.5CVSS7.7AI score0.04707EPSS
Exploits1References21Affected Software4
Veracode
Veracode
added 2019/01/15 9:2 a.m.62 views

Arbitrary File Overwrite

bash is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have...

9.8CVSS9.6AI score0.99999EPSS
Exploits140References163Affected Software1
Veracode
Veracode
added 2019/01/15 8:59 a.m.27 views

Arbitrary File Overwrite

glusterfs is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...

3.6CVSS5.9AI score0.00336EPSS
Exploits0References17Affected Software1
Veracode
Veracode
added 2019/01/15 8:58 a.m.13 views

Arbitrary File Overwrite

glusterfs is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the 1 e, 2 local-bricks.list, 3 bricks.err, or 4 limits.conf files in /tmp...

3.6CVSS6AI score0.00384EPSS
Exploits0References8Affected Software2
Veracode
Veracode
added 2019/01/15 8:55 a.m.20 views

Arbitrary File Overwrite

sudo is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as a certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux RHEL 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file...

5.6CVSS5.9AI score0.00435EPSS
Exploits1References11Affected Software1
Veracode
Veracode
added 2019/01/15 8:53 a.m.36 views

Arbitrary File Overwrite

hplip3 is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as the senddatatostdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing HPLIP 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out...

1.2CVSS5.8AI score0.00444EPSS
Exploits0References17Affected Software2
Veracode
Veracode
added 2019/01/15 8:52 a.m.33 views

Code Execution Using A Race Condition

Race condition in hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java in HawtJNI before 1.8, when a custom library path is not specified, allows local users to execute arbitrary Java code by overwriting a temporary JAR file with a predictable name in /tmp...

4.4CVSS5.9AI score0.00594EPSS
Exploits1References63Affected Software140
Veracode
Veracode
added 2019/01/15 8:50 a.m.29 views

Arbitrary File Overwrite

sanlock is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as the setuplogging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intended disk-quota restrictions via...

3.6CVSS6.1AI score0.00335EPSS
Exploits0References15Affected Software8
Rows per page
Query Builder