CVE-2005-3341

DHIS tools DNS package dhis-tools-dns before 5.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files created by 1 register-q.sh and 2 register-p.sh...

CVE-2005-3343

tkdiff before 4.1.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2005-3341

DHIS tools DNS package (dhis-tools-dns) prior to version 5.0 is affected by a local-privilege issue where temporary files created by register-q.sh and register-p.sh can be overwritten via a symlink attack. This is documented in multiple sources (e.g., Debian DSA-928-1) and CVE-2005-3341. Affected...

CVE-2005-3343

CVE-2005-3343 affects tkdiff prior to 4.1.1, where a symlink attack on temporary files allows local users to overwrite arbitrary files. The root cause is insecure temporary file handling in tkdiff. Impact is local privilege/partial data compromise for files within the attacker's ability to place ...

[Full-disclosure] iDefense Security Advisory 12.20.05: McAfee Security Center MCINSCTL.DLL ActiveX Control File Overwrite

McAfee Security Center MCINSCTL.DLL ActiveX Control File Overwrite iDefense Security Advisory 12.20.05 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=358 December 20, 2005 I. BACKGROUND McAfee VirusScan is an anti-virus software. More information is available from the vendor...

USN-223-1: Inkscape vulnerability

Javier Fernández-Sanguino Peña discovered that Inkscape's ps2epsi.sh script, which converts PostScript files to Encapsulated PostScript format, creates a temporary file in an insecure way. A local attacker could exploit this with a symlink attack to create or overwrite arbitrary files with the...

CVE-2004-2643

Directory traversal vulnerability in Microsoft cabarc allows remote attackers to overwrite files via "../" sequences in file names in a CAB archive...

CVE-2005-3961

exporthandler.php in WebCalendar 1.0.1 allows remote attackers to overwrite WebCalendar data files via a modified id parameter...

CVE-2005-3961

exporthandler.php in WebCalendar 1.0.1 allows remote attackers to overwrite WebCalendar data files via a modified id parameter...

CVE-2005-3885

The ps2epsi extension shell script ps2epsi.sh in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file...

CVE-2005-3885

The ps2epsi extension shell script ps2epsi.sh in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file...

DEBIAN-CVE-2005-3885

The ps2epsi extension shell script ps2epsi.sh in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file...

CVE-2005-3885

Inkscape is affected by CVE-2005-3885 due to a hardcoded temporary file in the ps2epsi extension shell script (ps2epsi.sh), enabling local users to perform a symlink attack and overwrite arbitrary files. Affected versions were prior to the fixed releases mentioned in multiple advisories, includin...

[Full-disclosure] WebCalendar Multiple Vulnerabilities

WebCalendar Multiple Vulnerabilities Name Multiple Vulnerabilities in WebCalendar Systems Affected WebCalendar verified on 1.0.1 Severity Medium Risk Vendor www.k5n.us/webcalendar.php?topic=About Advisory http://www.ush.it/2005/11/28/webcalendar-multiple-vulnerabilities/ Advisory...

CVE-2003-1281

cgihtml 1.69 allows local users to overwrite arbitrary files via a symlink attack on certain temporary files...

CVE-2003-1279

CVE-2003-1279 affects S-PLUS 6.0 and enables local users to overwrite arbitrary files via a symlink attack on multiple temporary files (e.g., /tmp/__F8499, /tmp/PRINT.$$.out, /tmp/SUBST$PID.TXT, /tmp/ed.cmds$PID, /tmp/file.1, /tmp/file.2, /tmp/sgml2html$$tmp, etc.). The underlying issue is a syml...

CVE-2003-1280

CVE-2003-1280: A directory traversal flaw in cgihtml 1.69 enables remote attackers to overwrite or create arbitrary files via .. in multipart/form-data uploads. Connected Red Hat/CVE records reiterate the same vulnerability details. The available documents do not provide a remediation or patch ve...

Acme thttpd < 2.24 CGI Test Script Symlink Arbitrary File Overwrite

Binary data 3282.prm...

wu-ftpd rnfr file overwrite

The remote Wu-FTPd server seems to be vulnerable to a remote flaw. This version contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formatted rnfr command. This flaw will allow a remote attacker to overwrite any...

scp File Create/Overwrite

You are running OpenSSH 1.2.3, or 1.2. This version has directory traversal vulnerability in scp, it allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack. OpenVAS Vulnerability Test $Id: sshscp.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: scp File...