Design/Logic Flaw

The 1 extractkeysfrompdf and 2 fillpdf functions in pdfext.py in logilab-commons before 0.61.0 allows local users to overwrite arbitrary files and possibly have other unspecified impact via a symlink attack on /tmp/toto.fdf...

CVE-2014-1838

The 1 extractkeysfrompdf and 2 fillpdf functions in pdfext.py in logilab-commons before 0.61.0 allows local users to overwrite arbitrary files and possibly have other unspecified impact via a symlink attack on /tmp/toto.fdf...

QNX 6.x Photon Denial Of Service / File Overwrite

QNX 6.x Photon denial of service vulnerability by cenobyte 2013 - vulnerability description: QNX setuid root /usr/photon/bin/Photon allows users to create new servers with arbitrary filenames registered with the -N parameter. Photon does not check whether files exist and/or the owner of the ile i...

KVIrc: Multiple vulnerabilities

Background KVIrc is a free portable IRC client based on Qt. Description Multiple vulnerabilities have been discovered in KVIrc. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, cause ...

AZL-34945 CVE-2013-4420 affecting package libtar for versions less than 1.2.20-11

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

UBUNTU-CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

CVE-2011-1837

The lock-counter implementation in utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors...

CVE-2011-1837

CVE-2011-1837 affects ecryptfs-utils where the lock-counter implementation in utils/mount.ecryptfs_private.c allows local users to overwrite arbitrary files via unspecified vectors. Public analyses in multiple advisories (openSUSE/SUSE, MiracleLinux AXSA:2011-680, Oracle Linux ELSA-2011-1241, SL/...

MGASA-2014-0058 Updated augeas package fixes security vulnerabilities

Multiple flaws were found in the way Augeas handled configuration files when updating them. An application using Augeas to update configuration files in a directory that is writable to by a different user for example, an application running as root that is updating files in a directory owned by a...

CVE-2010-4226

cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive...

CVE-2010-4226

cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive...

Updated hplip package fixes security vulnerabilities

It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files. CVE-2013-6402 It was discovered that HPLIP contained an upgrade tool that would download code in an unsafe fashion. If a remote attacker...

MGASA-2014-0033 Updated hplip package fixes security vulnerabilities

It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files. CVE-2013-6402 It was discovered that HPLIP contained an upgrade tool that would download code in an unsafe fashion. If a remote attacker...

SuSE 11.2 / 11.3 Security Update : hplip (SAT Patch Numbers 8775 / 8777)

hplip was updated to fix three security issues : - Some local file overwrite problems via predictable /tmp filenames were fixed. CVE-2013-0200 - hplip used an insecure polkit DBUS API polkit-process subject race condition which could lead to local privilege escalation. CVE-2013-4325 - hplip uses...

Internet Explorer mdsauth.dll Arbitrary File Overwrite - Ver2 (CVE-2007-2221)

A file overwrite vulnerability have been reported in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to create or overwrite arbitrary files on the affected system...

CVE-2014-1624

Race condition in the xdg.BaseDirectory.getruntimedir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to a victim-owned location, then replacing it with a symlink to an attacker-controlled location once th...

CVE-2014-1639

syncevo/installcheck-local.sh in syncevolution before 1.3.99.7 uses mktemp to create a safe temporary file but appends a suffix to the original filename and writes to this new filename, which allows local users to overwrite arbitrary files via a symlink attack on the new filename...

CVE-2014-1640

axiom-test.sh in axiom 20100701-1.1 uses tempfile to create a safe temporary file but appends a suffix to the original filename and writes to this new filename, which allows local users to overwrite arbitrary files via a symlink attack on the new filename...