CVE-2011-4617

virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/...

CVE-2011-4596

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...

CVE-2011-4606

Artsoft Entertainment Rocks'n'Diamonds aka rocksndiamonds 3.3.0.1 allows local users to overwrite arbitrary files via a symlink attack on .rocksndiamonds/cache/artworkinfo.cache under a user's home directory...

CVE-2011-4606

Artsoft Entertainment Rocks'n'Diamonds aka rocksndiamonds 3.3.0.1 allows local users to overwrite arbitrary files via a symlink attack on .rocksndiamonds/cache/artworkinfo.cache under a user's home directory...

Ubuntu 11.10 : nova vulnerability (USN-1305-1)

David Black discovered that Nova did not properly perform input validation during image registration. An attacker could exploit this by registering a crafted image using the EC2 API or S3/RegisterImage method and overwrite files as the nova user. Note that Tenable Network Security has extracted t...

CVE-2011-4596

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...

SuSE 11.1 Security Update : CUPS (SAT Patch Number 5180)

This update fixes the following security issues : - 601830: CSRF via admin web interface. CVE-2010-0540 - 680210: users in group 'lp' can overwrite arbitrary files. CVE-2010-2431 - 680212: denial of service via cupsDoAuthentication. CVE-2010-2432 - 711490: heap overflow in gif decoder...

SuSE 11.1 Security Update : radvd (SAT Patch Number 5397)

This update of radvd fixes the following security flaws : - arbitrary file overwrite flaw through unsanitized interface names CVE-2011-3602, - missing return value checks in privsepinit which could cause radvd to keep running with root privileges CVE-2011-3603, - buffer overread flaws in the...

DEBIAN-CVE-2011-4675

The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1 expands leading tilde characters to home-directory pathnames but does not restrict use of these characters in strings received from the network, which might allow remote attackers to conduct absolu...

DEBIAN-CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

CVE-2011-4675

The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1 expands leading tilde characters to home-directory pathnames but does not restrict use of these characters in strings received from the network, which might allow remote attackers to conduct absolu...

CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

Puppet multiple security vulnerabilities

Multiple file overwrite vulnerabilities, certificates spooging...

kernel: perf tools: may parse user-controlled configuration file

Untrusted search path vulnerability in the perfconfig function in tools/perf/util/config.c in perf, as distributed in the Linux kernel before 3.1, allows local users to overwrite arbitrary files via a crafted config file in the current working directory...

GLSA-201111-08 : radvd: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201111-08 radvd: Multiple vulnerabilities Multiple vulnerabilities have been discovered in radvd. Please review the CVE identifiers referenced below for details. Impact : A remote unauthenticated attacker may be able to gain...

OpenSSH < 3.4p1 scp Traversal Arbitrary File Overwrite

According to its banner, the version of OpenSSH running on the remote host is earlier than version 3.4p1. Such versions contain an arbitrary file overwrite vulnerability that could allow a malicious SSH server to cause the supplied scp utility to write to arbitrary files outside of the current...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : radvd vulnerabilities (USN-1257-1)

Vasiliy Kulikov discovered that radvd incorrectly parsed the NDOPTDNSSLINFORMATION option. A remote attacker could exploit this with a specially crafted request and cause the radvd daemon to crash, or possibly execute arbitrary code. The default compiler options for affected releases should reduc...