6876 matches found
ibutils: insecure handling of files in the /tmp directory
OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...
PineApp MailSecure - Remote Command Execution
----------------------------------------------------------------- It is possible execute any command bash as qmailq unprivilege user, sending only the following https request, without authentication...
CVE-2013-6127
The CVE-2013-6127 vulnerability affects WellinTech KingView prior to version 6.53, where the SUPERGRIDLib.SuperGrid ActiveX control (SuperGrid.ocx) before 65.30.30000.10002 allows an attacker to bypass restrictions on ReplaceDBFile, enabling remote creation/overwrite of arbitrary files via two pa...
[USN-1927-1] libimobiledevice vulnerability
========================================================================== Ubuntu Security Notice USN-1927-1 August 14, 2013 libimobiledevice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...
Cisco NX-OS Software Input Validation Vulnerability
A vulnerability in the command-line interface CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to create or overwrite files. The vulnerability is due to improper input filtering. An attacker could exploit this vulnerability by using a shell output redirection. A...
CVE-2012-4122
Cisco NX-OS Software contains a vulnerability in the CLI parser that allows an authenticated, local attacker to bypass access restrictions and create or overwrite arbitrary files via shell output redirection. Affected component: the CLI parsing logic in Cisco NX-OS. Impact: local privilege abuse ...
CVE-2013-4157
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the 1 e, 2 local-bricks.list, 3 bricks.err, or 4 limits.conf files in /tmp...
PT-2013-4878 · Red Hat · Red Hat Storage
Name of the Vulnerable Software and Affected Versions: Red Hat Storage version 2.0 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on certain files in /tmp, including e, local-bricks.list, bricks.err, or limits.conf. Recommendations: For Red Hat Storage...
WellinTech KingView ActiveX Multiple Arbitrary File Overwrite Vulnerabilities
Binary data scadakingviewactivex.nbin...
Byword 2.x File Overwrite Vulnerability
The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in a byword://replace URL. Affected Vendor: http://metaclassy.com/ - Affected Software: Byword for iO...
Session fixation
The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in a byword://replace URL...
Code injection
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows local users to overwrite arbitrary files via a symlink attack on /tmp/2222...
CVE-2013-1444
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows local users to overwrite arbitrary files via a symlink attack on /tmp/2222...
Byword 2.x File Overwrite
Affected Vendor: http://metaclassy.com/ - Affected Software: Byword for iOS - Affected Version: 2.x prior to 2.1 - Issue Type: Lack of validation/user confirmation leading to destruction of data - Release Date: 29 Sept 2013 - Discovered by: Guillaume Ross - CVE Identifier: CVE-2013-5725 - Issue...
HP LoadRunner WriteFileString Directory Traversal - ver 2 (CVE-2013-4798)
A directory traversal and file overwrite vulnerability exists in HP LoadRunner. The vulnerability is due to insufficient input sanitization, which permits directory traversal in theWriteFileString method. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to visi...
CVE-2013-4277
Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option...
Code injection
lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/...
PT-2013-4922 · Red Hat +1 · Ansible +1
Name of the Vulnerable Software and Affected Versions: Ansible versions 1.2.0 through 1.2.2 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/. This occurs when the playbook does not run due to a...
KingView 6.53 Active-X File Overwrite / Creation
arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1...
SearchBlox Multiple Vulnerabilities (Sep 2013) - Active Check
SearchBlox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...