6871 matches found
CVE-2008-4937
senddoc in OpenOffice.org OOo 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr. temporary file...
CVE-2008-4942
audiolink in audiolink 0.05 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/audiolink.db.tmp and 2 /tmp/audiolink.tb.tmp temporary files...
CVE-2008-4940
xmlfile.py in aptoncd 0.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/aptoncd temporary file...
CVE-2008-4942
audiolink in audiolink 0.05 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/audiolink.db.tmp and 2 /tmp/audiolink.tb.tmp temporary files...
CVE-2008-4935
asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview.pgm temporary file...
CVE-2008-4940
xmlfile.py in aptoncd 0.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/aptoncd temporary file...
CVE-2008-4947
dhis-dummy-log-engine in dhis-server 5.3 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/dhis-dummy-log-engine.log temporary file...
CVE-2008-4935
asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview.pgm temporary file...
CVE-2008-4937
senddoc in OpenOffice.org OOo 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr. temporary file...
Remote code execution
webmail/modules/filesystem/edit.php in U-Mail Webmail server 4.91 allows remote attackers to overwrite arbitrary files via an absolute pathname in the path parameter and arbitrary content in the content parameter. NOTE: this can be leveraged for code execution by writing to a file under the web...
Design/Logic Flaw
mead.pl in fml 4.0.3 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/debugbuf temporary file...
Code injection
apertium 3.0.7 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.lex.cc, b /tmp/.deformat.l, c /tmp/.reformat.l, d /tmp/docxorig, e /tmp/docxsalida.zip, f /tmp/xlsxembed, g /tmp/xlsxorig, and h /tmp/xslxsalida.zip temporary files, related to the 1...
Code injection
writtercontrol in cdcontrol 1.90 allows local users to overwrite arbitrary files via a symlink attack on /tmp/v-recorder-out temporary files...
CVE-2008-4951
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...
Design/Logic Flaw
aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/, b /tmp/.intro, c /tmp/aegis..ae, d /tmp/aegis., e /tmp/aegis..1, f /tmp/aegis..2, g /tmp/aegis..log, and h /tmp/aegis..out temporary files, related to the 1 bngdvlpd.sh, 2 bngrvwd.sh, 3...
CVE-2008-4954
mead.pl in fml 4.0.3 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/debugbuf temporary file...
CVE-2008-4935
asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview.pgm temporary file...
CVE-2008-4951
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/awstats.log, b /tmp/spam.log., and c /tmp/spamerr.log temporary files, related to the 1 accesslog.php and 2 sa-wrapper scripts...
CVE-2008-4939
apertium 3.0.7 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.lex.cc, b /tmp/.deformat.l, c /tmp/.reformat.l, d /tmp/docxorig, e /tmp/docxsalida.zip, f /tmp/xlsxembed, g /tmp/xlsxorig, and h /tmp/xslxsalida.zip temporary files, related to the 1...
CVE-2008-4932
webmail/modules/filesystem/edit.php in U-Mail Webmail server 4.91 allows remote attackers to overwrite arbitrary files via an absolute pathname in the path parameter and arbitrary content in the content parameter. NOTE: this can be leveraged for code execution by writing to a file under the web...