wu-ftpd rnfr file overwrite

The remote Wu-FTPd server seems to be vulnerable to a remote flaw. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

NTOP < 3.2 ntop.init Temporary File Symlink Arbitrary File Overwrite

Binary data 3272.prm...

CVE-2005-3311

BMC Software Control-M 6.1.03 for Solaris, and possibly other platforms, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2005-2992

arc 5.21j and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different type of vulnerability than CVE-2005-2945...

CVE-2005-2992

arc 5.21j and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different type of vulnerability than CVE-2005-2945...

CVE-2005-2992

CVE-2005-2992 affects arc up to version 5.21j; vulnerability arises from a symlink attack on temporary files, allowing local users to overwrite arbitrary files. This is a local privilege issue with world-readable temporary files (per the SUSE advisory). Connected documents provide the affected co...

CVE-2005-2992

arc 5.21j and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different type of vulnerability than CVE-2005-2945...

security flaw

script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command...

Mandrake Linux Security Advisory : texinfo (MDKSA-2005:175)

Frank Lichtenheld has discovered that texindex insecurely creates temporary files with predictable filenames. This is exploitable if a local attacker were to create symbolic links in the temporary files directory, pointing to a valid file on the filesystem. When texindex is executed, the file wou...

GLSA-200510-04 : Texinfo: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200510-04 Texinfo: Insecure temporary file creation Frank Lichtenheld has discovered that the 'sortoffline' function in texindex insecurely creates temporary files with predictable filenames. Impact : A local attacker could create...

CVE-2005-2960

cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137...

CVE-2005-3137

CVE-2005-3137 affects cfengine 1.6.5 via insecure temporary file handling in cfmailfilter and cfcron.in, enabling a local user to exploit a symlink to overwrite arbitrary files owned by the executing user (likely root). Connected advisories (Debian DSA-835-1, DSA-836-1) document insecure temporar...

CVE-2005-3136

CVE-2005-3136 affects Virtools Web Player 3.0.0.100 and earlier. The vulnerability is a directory traversal flaw where a .. in a filename enables writing to arbitrary files. The connected documents provide the vulnerability description and do not include explicit exploitation details or confirmed...

Berkeley MPEG Tools: Multiple insecure temporary files

Background The Berkeley MPEG Tools are a collection of utilities for manipulating MPEG video technology, including an encoder mpegencode and various conversion utilities. Description Mike Frysinger of the Gentoo Security Team discovered that mpegencode and the conversion utilities were creating...

Low: Red Hat Security Advisory: ghostscript security update

Updated ghostscript packages that fix a PDF output issue and a temporary file security bug are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript...

DEBIAN-CVE-2005-3069

xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file...

CVE-2005-3069

xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file...

security flaw

wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wget's filtering for ".." sequences...

HylaFAX < 4.2.2 RC1 xferfaxstats Symlink Arbitrary File Overwrite

Binary data 3236.prm...

CVE-2005-2663

masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file...