CVE-2006-3593

The command line interface CLI in Cisco Unified CallManager CUCM 5.01 through 5.03a allows local users to overwrite arbitrary files by redirecting a command's output to a file or folder, aka bug CSCse31704...

CVE-2006-3326

Directory traversal vulnerability in QuickZip 3.06.3 allows remote user-assisted attackers to overwrite arbitrary files or directories via .. dot dot sequences in filenames within 1 TAR,2 GZ, and 3 JAR archives. NOTE: the provenance of this information is unknown; the details are obtained solely...

DEBIAN-CVE-2006-3324

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine ioquake3 before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory fshomepath cvar via a long string of filenames, as contained in the neededpaks buffer...

CVE-2006-3324

The CVE-2006-3324 entry describes a remote arbitrary-file overwrite vulnerability in the id3 Quake 3 Engine and ioquake3 (ioquake3) before revision 804, exploitable via the Automatic Downloading option by sending a long string of filenames contained in the neededpaks buffer. The underlying issue ...

CVE-2006-3326

The CVE-2006-3326 entry describes a directory-traversal vulnerability in QuickZip 3.06.3 where remote attacker-controlled dot-dot sequences in filenames inside TAR, GZ, and JAR archives can cause overwriting of arbitrary files or directories. The root cause is improper handling of archive filenam...

CVE-2006-3324

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine ioquake3 before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory fshomepath cvar via a long string of filenames, as contained in the neededpaks buffer...

CVE-2006-3288

CVE-2006-3288 affects Cisco Wireless Control System (WCS) TFTP server on Linux/Windows. The vulnerability arises when the configured directory path name contains a space character, allowing remote authenticated users to read and overwrite arbitrary files via unspecified vectors. Affected versions...

DEBIAN-CVE-2006-3178

Directory traversal vulnerability in extractchmLib example program in CHM Lib chmlib before 0.38 allows remote attackers to overwrite arbitrary files via a CHM archive containing files with a .. dot dot in their filename...

CVE-2006-3178

Directory traversal vulnerability in extractchmLib example program in CHM Lib chmlib before 0.38 allows remote attackers to overwrite arbitrary files via a CHM archive containing files with a .. dot dot in their filename...

CVE-2006-2717

Affected software: Secure Elements Class 5 AVR client and server (C5 EVM) prior to 2.8.1. Vulnerability: authenticated attackers can overwrite arbitrary files (1) on a server during an update, or (2) on a client via modified pathnames, likely due to a directory traversal issue. Impact: potential ...

Path traversal

Absolute path traversal vulnerability in the copy action in index.php in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to create or overwrite files in other users' directories by specifying the absolute path of the directory in the infolder parameter and simultaneously...

Secure Elements Class 5 AVR server fails to properly validate pathnames when downloading updates

Overview The Secure Elements Class 5 AVR server fails to properly validate pathnames when downloading updates. This may allow an attacker to overwrite arbitrary files on the server system. Description Class 5 AVR Secure Elements Class 5 AVR Automated Vulnerability Remediation is a security produc...

Secure Elements Class 5 AVR client fails to properly validate pathnames supplied in messages

Overview The Secure Elements Class 5 AVR client fails to properly validate pathnames supplied in messages, which may allow an attacker to overwrite any file on a vulnerable client as root. Description Class 5 AVR Secure Elements Class 5 AVR Automated Vulnerability Remediation is a security produc...

CVE-2005-4802

Vulnerability summary (CVE-2005-4802) : Flexbackup 1.2.1 and earlier is affected. The issue allows a local attacker to overwrite files and potentially execute code via a symlink attack on temporary files. The root cause is insecure handling of temporary files, enabling a symlink race condition. A...

CVE-2005-4803

Graphviz before 2.2.1 is vulnerable to a local privilege escalation via a symlink attack on temporary files, allowing local users to overwrite arbitrary files due to insecure temporary-file creation. The issue is correctly identified as CVE-2005-4803 (not CVE-2005-2965). Affected component: graph...

CVE-2005-4802

Flexbackup 1.2.1 and earlier allows local users to overwrite files and execute code via a symlink attack on temporary files. NOTE: the raw source referenced an incorrect candidate number; this is the correct number to use...

CVE-2006-2366

ircpio.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session...

CVE-2006-2366

ircpio.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session...

CVE-2006-2366

ircpio.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session...

CVE-2006-2366

CVE-2006-2366 affects libopenobex/ircp 1.2. The ircp -r mode does not prompt before overwriting files in OBEX File Transfer, allowing user-assisted remote attackers to overwrite arbitrary destination files. Concrete details in the NVD/NVD-derived entries confirm the vulnerability in ircp_io.c and...