CVE-2012-6080

Directory traversal vulnerability in the doattachmentmove function in the AttachFile action action/AttachFile.py in MoinMoin 1.9.3 through 1.9.5 allows remote attackers to overwrite arbitrary files via a .. dot dot in a file name...

CVE-2012-5638

The setuplogging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intended disk-quota restrictions via standard filesystem write operations...

CVE-2012-5638

CVE-2012-5638 concerns SANLock: the setup_logging function in log.h creates /var/log/sanlock.log with world-writable permissions, enabling a local user to overwrite log content or bypass quota constraints via standard filesystem writes. The issue is evidenced in multiple sources (NVD/NVD-derived ...

CVE-2012-3329

CVE-2012-3329 affects IBM’s Advanced Settings Utility (ASU) and Bootable Media Creator (BoMC) on Linux. The issue is a local-privilege problem where a user can overwrite arbitrary files via a symlink attack on a (1) temporary file or (2) log file. Affected versions include ASU up to 3.62 and 3.70...

EMC Avamar 6.1.100-402 File Overwrite

Product: Avamar backup client for Linux Proberly also Unix but not tested Vendor: EMC http://www.emc.com Tested version: 6.1.100-402 Latest Vendor Notification: December 17, 2012 Vender Patch: None Vender Workaround: workaround is to run a script at the end of each backup which set the files...

Centrify Deployment Manager v2.1.0.283 File Overwrite Vulnerability

Centrify Deployment Manager v2.1.0.283 version 2.1.0.283 appears to suffer from a root-level file overwrite vulnerability due to an insecure use of /tmp. Centrify Deployment Manager v2.1.0.283 While at a training session for centrify, I noticed poor handling of files in /tmp. I was able to...

CVE-2012-5530

The 1 pcmd and 2 pmlogger init scripts in Performance Co-Pilot PCP before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/ temporary file...

Code injection

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...

CVE-2012-4417

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...

DEBIAN-CVE-2012-4417

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...

CVE-2012-4417

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...

CVE-2012-4417

CVE-2012-4417 affects GlusterFS 3.3.0 as used in Red Hat Storage Server 2.0, where local users can overwrite arbitrary files via a symlink attack on temporary files with predictable names. The issue is tied to insecure temporary file creation in GlusterFS components; impact is partial confidentia...

CVE-2012-5897

CVE-2012-5897 affects Quest InTrust 10.4.0.853 and earlier via the ARDoc ActiveX control (ARDoc.dll). The (1) SimpleTree and (2) ReportTree classes do not properly implement the SaveToFile method, enabling remote attackers to write or overwrite arbitrary files through the bstrFileName argument. D...

Ubuntu: Security Advisory (USN-1622-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Forms Recognition Multiple ActiveX Control Arbitrary File Overwrite Vulnerabilities

The remote host has an unpatched version of Oracle Forms Recognition installed that is affected by multiple vulnerable ActiveX controls. A flaw in the 'Save' method of the 'CroScPlt' control, and the 'saveLayout' method of the 'Sssplt30' control may be exploited to overwrite arbitrary files on th...

[waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin

waraxe-2012-SA094 - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin ============================================================================================= Author: Janek Vind "waraxe" Date: 24. October 2012 Location: Estonia, Tartu Web:...

Debian: Security Advisory (DSA-2562-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress GRAND Flash Album Gallery SQL Injection / Disclosure / File Overwrite

waraxe-2012-SA094 - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin ============================================================================================= Author: Janek Vind "waraxe" Date: 24. October 2012 Location: Estonia, Tartu Web:...

WordPress GRAND Flash Album Gallery SQL Injection / Disclosure / File Overwrite

WordPress GRAND Flash Album Gallery plugin versions 1.9.0 and 2.0.0 suffer from file disclosure, file overwrite, directory traversal, and remote SQL injection vulnerabilities. Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin...

Bash: Multiple vulnerabilities

Background Bash is the standard GNU Bourne Again SHell. Description Two vulnerabilities have been found in Bash: Bash example scripts do not handle temporary files securely CVE-2008-5374. Improper bounds checking in Bash could cause a stack-based buffer overflow CVE-2012-3410. Impact A remote...