CVE-2008-4191

extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file...

Design/Logic Flaw

The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the 1 ipseclive.conn and 2 ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream...

CVE-2008-4191

CVE-2008-4191 affects Emacspeak 26 and 28, where extract-table.pl can be exploited by a local user via a symlink attack on the temporary file extract-table.csv, enabling overwriting arbitrary files. The vulnerability arises from insecure handling of a /tmp-like file, with impact described as loca...

Chilkat XML ActiveX Remote Arbitrary File Creation/Execution Exploit

No description provided by source. ----------------------------------------------------------------------------- Chilkat XML ActiveX Remote Arbitrary File Creation/Execution url: www.chilkatsoft.com File: ChilkatUtil.dll = 3.0.3.0 CLSID: 5022FAE8-B780-4B78-B8DC-1AF1145A4F42 ProgID:...

Gentoo Security Advisory GLSA 200404-20 (xine)

The remote host is missing updates announced in advisory GLSA 200404-20. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200611-10 (wordpress)

The remote host is missing updates announced in advisory GLSA 200611-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200709-08 (id3lib)

The remote host is missing updates announced in advisory GLSA 200709-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200410-02 (Netpbm)

The remote host is missing updates announced in advisory GLSA 200410-02. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2008-4108

Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...

CVE-2008-4085

plaiter in Plait before 1.6 allows local users to overwrite arbitrary files via a symlink attack on 1 cut.$$, 2 head.$$, 3 awk.$$, and 4 ps.$$ temporary files in /tmp/...

CVE-2008-4085

plaiter in Plait before 1.6 allows local users to overwrite arbitrary files via a symlink attack on 1 cut.$$, 2 head.$$, 3 awk.$$, and 4 ps.$$ temporary files in /tmp/...

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (1)

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite 1 source: https://www.securityfocus.com/bid/31069/info Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controll...

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (2)

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite 2 source: https://www.securityfocus.com/bid/31069/info Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controll...

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (1)

source: https://www.securityfocus.com/bid/31069/info Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input. ...

Microsoft Windows - Image Acquisition Logger ActiveX Control Arbitrary File Overwrite (2)

source: https://www.securityfocus.com/bid/31069/info Microsoft Windows Image Acquisition Logger ActiveX control is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. The issue occurs because the control fails to sanitize user-supplied input. ...

CVE-2008-3927

genmsgidx in Tiger 3.2.2 allows local users to overwrite or delete arbitrary files via a symlink attack on temporary files...

CVE-2008-3930

migratealiases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

CVE-2008-3930

migratealiases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

CVE-2008-3931

javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2008-3927

CVE-2008-3927 affects Tiger 3.2.2, where genmsgidx can be abused by local users to overwrite or delete arbitrary files through a symlink attack on temporary files. The underlying issue is improper handling of temporary files leading to a symlink race condition that enables local privilege abuse. ...