CVE-2008-4958

CVE-2008-4958 : gdrae 0.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gdrae/palabra temporary file. The underlying issue is a symlink race in temporary-file handling. The impact is described as complete confidentiality, integrity, and availability for a local ...

CVE-2008-4953

FireHOL 1.256 is affected by a local vulnerability allowing unprivileged users to overwrite temporary files via a symlink attack on /tmp/.firehol-tmp-#####-- and /tmp/firehol.conf. The vendor disputes the issue, claiming exploitation requires creating a large number of symlinks. Connected sources...

CVE-2008-4946

CVE-2008-4946 affects convirt 0.8.2, where local users can overwrite arbitrary files via a symlink attack on the /tmp/set_output temporary file. The vulnerability is exercised through multiple provision.sh scripts (in template , Linux_CD_Install, Fedora_PV_Install, CentOS_PV_Install, common, exam...

CVE-2008-4944

CVE-2008-4944 affects writtercontrol in cdcontrol 1.90. The vulnerability arises from a symlink attack on temporary files /tmp/v-recorder*-out, allowing local users to overwrite arbitrary files. The description and multiple references confirm local write access due to improper handling of tempora...

CVE-2008-4943

CVE-2008-4943 affects bulmages-servers 0.11.1 and allows local users to overwrite arbitrary files via a symlink attack targeting temporary files such as /tmp/error.txt and /tmp/errores.txt, with possible impact on related scripts (creabulmafact, creabulmacont, actualizabulmacont, installbulmages-...

CVE-2008-4936

The CVE-2008-4936 issue affects mgetty 1.1.36 (faxspool). Local users can overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file, due to insecure temporary file handling in faxspool. The vulnerability is exploitable locally with no authentication required. A mitigatio...

CVE-2008-4932

CVE-2008-4932 affects U-Mail Webmail server 4.91 via webmail/modules/filesystem/edit.php. An attacker can remotely overwrite arbitrary files by supplying an absolute pathname in the path parameter and arbitrary content in the content parameter; writing PHP code to a file within the web document r...

CVE-2008-4939

CVE-2008-4939 affects apertium 3.0.7 and enables local users to overwrite arbitrary files via a symlink attack on temporary files created by apertium-gen-deformat, apertium-gen-reformat, and related scripts (files such as /tmp/#####.lex.cc, /tmp/#####.deformat.l, /tmp/#####.reformat.l, /tmp/#####...

CVE-2008-4942

audiolink in audiolink 0.05 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/audiolink.db.tmp and 2 /tmp/audiolink.tb.tmp temporary files...

CVE-2008-4952

CVE-2008-4952 concerns emacs-jabber 0.7.91, where a local user can overwrite arbitrary files via a symlink attack on /tmp/*.log. The root cause is a symlink, enabling local exploitation and arbitrary file modification. Exploitation status and concrete patch/remediation details are not provided in...

CVE-2008-4943

bulmages-servers 0.11.1 allows local users to overwrite arbitrary files via a symlink attack on the a /tmp/error.txt, b /tmp/errores.txt, and possibly other temporary files, related to the 1 creabulmafact, 2 creabulmacont, and possibly 3 actualizabulmacont, 4 installbulmages-db, and 5...

CVE-2008-4936

faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp. temporary file...

CVE-2008-4935

asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview.pgm temporary file...

PT-2008-6109 · Aview +1 · Aview +1

Name of the Vulnerable Software and Affected Versions: aview version 1.3.0 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on a /tmp/aview.pgm temporary file created by asciiview in aview. Recommendations: For aview version 1.3.0, consider restricting...

Design/Logic Flaw

Multiple insecure method vulnerabilities in MW6 Technologies PDF417 ActiveX control MW6PDF417Lib.PDF417, MW6PDF417.dll 3.0.0.1 allow remote attackers to overwrite arbitrary files via a full pathname argument to the 1 SaveAsBMP and 2 SaveAsWMF methods...

CVE-2008-4923

The CVE-2008-4923 entry concerns MW6 Technologies Aztec ActiveX control (AZTECLib.MW6Aztec, Aztec.dll) v3.0.0.1. Affected component methods SaveAsBMP and SaveAsWMF allow a remote attacker to overwrite arbitrary files by passing a full pathname argument, indicating an insecure method vulnerability...

CVE-2008-4924

CVE-2008-4924 : Multiple insecure method vulnerabilities in MW6 Technologies’ 1D Barcode ActiveX control (BARCODELib.MW6Barcode, Barcode.dll 3.0.0.1) allow remote attackers to overwrite arbitrary files via a full pathname argument to the (1) SaveAsBMP and (2) SaveAsWMF methods. The issue is trigg...

CVE-2008-4925

CVE-2008-4925 affects MW6 Technologies DataMatrix ActiveX control (DATAMATRIXLib.MW6DataMatrix, DataMatrix.dll) version 3.0.0.1. The flaw arises in the SaveAsBMP and SaveAsWMF methods, allowing a remote attacker to overwrite arbitrary files by supplying a full pathname. Impact per the entry is co...

CVE-2008-4908

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

Aztec ActiveX 'Aztec.dll' ActiveX控件任意文件覆盖漏洞

BUGTRAQ ID: 31974 CNCAN ID：CNCAN-2008103002 MW6 Aztec ActiveX是一款条形码组件。 MW6 Aztec ActiveX 'Aztec.dll'存在设计问题，远程攻击者可以利用漏洞以应用程序权限覆盖系统文件。 控件对SaveAsBMP和SaveAsWMF方法处理存在问题，构建恶意WEB页，诱使用户访问，可导致以应用程序权限覆盖系统文件。 MW6 Technologies Aztec ActiveX 3.0.0.1 目前没有详细解决方案提供： http://www.mw6tech.com/products.html...