lftp security update

CentOS Errata and Security Advisory CESA-2010:0585 An updated lftp package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

DSA-2085-1 lftp - file overwrite vulnerability

Bulletin has no description...

Moderate: Red Hat Security Advisory: lftp security update

An updated lftp package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

tomcat: unexpected file deletion and/or alteration

Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. dot dot in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry...

CVE-2010-2056

GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

CVE-2010-2056

GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

CVE-2010-2056

GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

perl security update

CentOS Errata and Security Advisory CESA-2010:0505 An updated perl-Archive-Tar package that fixes multiple security issues is now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability...

lftp file overwrite

Downloaded file name in lftpget may be set by server without user confirmation...

CUPS < 1.4.4 Multiple Vulnerabilities

According to its banner, the version of CUPS installed on the remote host is earlier than 1.4.4. Such versions are affected by several vulnerabilities : - The patch for STR 3200 / CVE-2009-3553 was not complete. A remote client can cause a denial of service by causing the CUPS server to reference...

CVE-2010-2251

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

CVE-2010-2252

GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a URL wit...

DEBIAN-CVE-2010-2252

GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a URL wit...

Command injection

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

CVE-2010-2251

CVE-2010-2251 affects the FTP/HTTP client lftp (prior to 4.0.6). The vulnerability arises in the get1 path used by lftpget, where a server-provided filename from Content-Disposition is not properly validated, allowing a remote server to influence the destination filename and potentially overwrite...

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

CVE-2010-2251

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

DEBIAN-CVE-2010-2452

Directory traversal vulnerability in the DCC functionality in KVIrc 3.4 and 4.0 allows remote attackers to overwrite arbitrary files via unknown vectors...

CVE-2010-2452

CVE-2010-2452 affects KVIrc 3.4 and 4.0 via the DCC functionality. It is a directory traversal vulnerability that could allow a remote attacker to overwrite arbitrary files. Root cause described as traversal in DCC handling; no patch/version details are provided in the connected documents. No rem...